CISSP Free Practice Test

- (Exam Topic 14)
Which of the following MUST a security professional do in order to quantify the value of a security program to organization management?

1. A. Report using metrics.
2. B. Rank priorities as high, medium, or low.
3. C. Communicate compliance obstacles.
4. D. Report en employee activities

Correct Answer: A

- (Exam Topic 15)
What level of Redundant Array of Independent Disks (RAID) is configured PRIMARILY for high-performance data reads and writes?

1. A. RAID-0
2. B. RAID-1
3. C. RAID-5
4. D. RAID-6

Correct Answer: A

- (Exam Topic 14)
If virus infection is suspected, which of the following is the FIRST step for the user to take?

1. A. Unplug the computer from the network.
2. B. Save the opened files and shutdown the computer.
3. C. Report the incident to service desk.
4. D. Update the antivirus to the latest version.

Correct Answer: C

- (Exam Topic 14)
Which attack defines a piece of code that is inserted into software to trigger a malicious function?

1. A. Phishing
2. B. Salami
3. C. Back door
4. D. Logic bomb

Correct Answer: D

- (Exam Topic 11)
Which of the following is a recommended alternative to an integrated email encryption system?

1. A. Sign emails containing sensitive data
2. B. Send sensitive data in separate emails
3. C. Encrypt sensitive data separately in attachments
4. D. Store sensitive information to be sent in encrypted drives

Correct Answer: C