Practice Exam

Question 1

(ISC)² publishes a Common Body of Knowledge (CBK) that IT security practitioners should be familiar with; this is recognized throughout the industry as a set of material that is useful for practitioners to refer to. Certifications can be issued for demonstrating expertise in this Common Body of Knowledge. What kind of document is the Common Body of Knowledge?

Answer 1

Standard

Question 2

Zarma is an (ISC)² member and a security analyst for Triffid Corporation. One of Zarma’s colleagues is interested in getting an (ISC)2  certification and asks Zarma what the test questions are like. What should Zarma do?

Answer 2

Explain the style and format of the questions, but no detail

Question 3

Siobhan is an (ISC)² member who works for Triffid Corporation as a security analyst. Yesterday, Siobhan got a parking ticket while shopping after work. What should Siobhan do?

Answer 3

Pay the parking ticket

Question 4

In risk management concepts, a(n) _________ is something a security practitioner might need to protect.

Answer 4

Asset

Question 5

Tina is an (ISC)² member and is invited to join an online group of IT security enthusiasts. After attending a few online sessions, Tina learns that some participants in the group are sharing malware with each other, in order to use it against other organizations online. What should Tina do?

Answer 5

Stop participating in the group

Question 6

Triffid Corporation has a policy that all employees must receive security awareness instruction before using email; the company wants to make employees aware of potential phishing attempts that the employees might receive via email. What kind of control is this instruction?

Answer 6

Administrative

Question 7

Hoshi is an (ISC)2  member who works for the Triffid Corporation as a data manager. Triffid needs a new firewall solution, and Hoshi is asked to recommend a product for Triffid to acquire and implement. Hoshi’s cousin works for a firewall vendor; that vendor happens to make the best firewall available. What should Hoshi do?

Answer 7

disclose the relationship, but recommend the vendor/product

Question 8

Olaf is a member of (ISC)² and a security analyst for Triffid Corporation. During an audit, Olaf is asked whether Triffid is currently following a particular security practice. Olaf knows that Triffid is not adhering to that standard in that particular situation, but that saying this to the auditors will reflect poorly on Triffid. What should Olaf do?

Answer 8

Tell the auditors the truth

Question 9

Which of the following is an example of a “something you know” authentication factor?

Answer 9

Password

Question 10

Steve is a security practitioner assigned to come up with a protective measure for ensuring cars don’t collide with pedestrians. What is probably the most effective type of control for this task?

Answer 10

Physical

Question 11

Aphrodite is a member of (ISC)² and a data analyst for Triffid Corporation. While Aphrodite is reviewing user log data, Aphrodite discovers that another Triffid employee is violating the acceptable use policy and watching streaming videos during work hours. What should Aphrodite do?

Answer 11

Inform Triffid management

Question 12

The city of Grampon wants to know where all its public vehicles (garbage trucks, police cars, etc.) are at all times, so the city has GPS transmitters installed in all the vehicles. What kind of control is this?

Answer 12

Technical

Question 13

The Triffid Corporation publishes a policy that states all personnel will act in a manner that protects health and human safety. The security office is tasked with writing a detailed set of processes on how employees should wear protective gear such as hardhats and gloves when in hazardous areas. This detailed set of processes is a _________.

Answer 13

Procedure

Question 14

Glen is an (ISC)² member. Glen receives an email from a company offering a set of answers for an (ISC)² certification exam. What should Glen do?

Answer 14

Inform (ISC)²

Question 15

In risk management concepts, a(n) ___________ is something or someone that poses risk to an organization or asset.

Answer 15

Threat

Question 16

A software firewall is an application that runs on a device and prevents specific types of traffic from entering that device. This is a type of ________ control.

Answer 16

Technical

Question 17

Grampon municipal code requires that all companies that operate within city limits will have a set of processes to ensure employees are safe while working with hazardous materials. Triffid Corporation creates a checklist of activities employees must follow while working with hazardous materials inside Grampon city limits. The municipal code is a ______, and the Triffid checklist is a ________.

Answer 17

Law, procedure

Question 18

A system that collects transactional information and stores it in a record in order to show which users performed which actions is an example of providing ________.

Answer 18

Non-repudiation

Question 19

A bollard is a post set securely in the ground in order to prevent a vehicle from entering an area or driving past a certain point. Bollards are an example of ______ controls.

Answer 19

Physical

Question 20

Druna is a security practitioner tasked with ensuring that laptops are not stolen from the organization’s offices. Which sort of security control would probably be best for this purpose?

Answer 20

Physical

Question 21

Who approves the incident response policy?

Answer 21

Senior management

Question 22

What is the risk associated with delaying resumption of full normal operations after a disaster?

Answer 22

The impact of running alternate operations for extended periods

Question 23

What is the risk associated with resuming full normal operations too soon after a DR effort?

Answer 23

The danger posed by the disaster might still be present

Question 24

True or False? Business continuity planning is a reactive procedure that restores business operations after a disruption occurs.

Answer 24

False

Question 25

What is the goal of an incident response effort?

Answer 25

Reduce the impact of incidents on operations

Question 26

What is the goal of Business Continuity efforts?

Answer 26

Keep critical business functions operational

Question 27

When should a business continuity plan (BCP) be activated?

Answer 27

When senior management decides

Question 28

All of the following are typically perceived as drawbacks to biometric systems, except:

Answer 28

Lack of accuracy

Question 29

Prachi works as a database administrator for Triffid, Inc. Prachi is allowed to add or delete users, but is not allowed to read or modify the data in the database itself. When Prachis logs onto the system, an access control list (ACL) checks to determine which permissions Prachi has.

Which security concept is being applied in this situation?

Answer 29

Least privilege

Question 30

Which of the following would be considered a logical access control?

Answer 30

A fingerprint reader that allows an employee to access a laptop computer

Question 31

Handel is a senior manager at Triffid, Inc., and is in charge of implementing a new access control scheme for the company. Handel wants to ensure that operational managers have the utmost personal choice in determining which employees get access to which systems/data. Which method should Handel select?

Answer 31

Discretionary access controls (DAC)

Question 32

Handel is a senior manager at Triffid, Inc., and is in charge of implementing a new access control scheme for the company. Handel wants to ensure that employees who are assigned to new positions in the company do not retain whatever access they had in their old positions. Which method should Handel select?

Answer 32

Role-based access controls (RBAC)

Question 33

Guillermo logs onto a system and opens a document file. In this example, Guillermo is:

Answer 33

The subject

Question 34

Larry and Fern both work in the data center. In order to enter the data center to begin their workday, they must both present their own keys (which are different) to the key reader, before the door to the data center opens.

Which security concept is being applied in this situation?

Answer 34

Dual control

Question 35

Which of the following is a biometric access control mechanism?

Answer 35

A door locked by a voiceprint identifier

Question 36

Which of the following is probably most useful at the perimeter of a property?

Answer 36

A fence

Question 37

Which of the following will have the most impact on determining the duration of log retention?

Answer 37

Applicable laws

Question 38

Trina and Doug both work at Triffid, Inc. Doug is having trouble logging into the network. Trina offers to log in for Doug, using Trina’s credentials, so that Doug can get some work done.

What is the problem with this?

Answer 38

Anything either of them do will be attributed to Trina

Question 39

Prina is a database manager. Prina is allowed to add new users to the database, remove current users and create new usage functions for the users. Prina is not allowed to read the data in the fields of the database itself. This is an example of:

Answer 39

Role-based access controls (RBAC)

Question 40

Which of these is an example of a physical access control mechanism?

Answer 40

A lock on a door

Question 41

Handel is a senior manager at Triffid, Inc., and is in charge of implementing a new access control scheme for the company. Handel wants to ensure that employees transferring from one department to another, getting promoted, or cross-training to new positions can get access to the different assets they’ll need for their new positions, in the most efficient manner. Which method should Handel select?

Answer 41

Role-based access controls (RBAC)

Question 42

Which of the following is not an appropriate control to add to privileged accounts?

Answer 42

Security deposit

Question 43

Trina is a security practitioner at Triffid, Inc. Trina has been tasked with selecting a new product to serve as a security control in the environment. After doing some research, Trina selects a particular product. Before that product can be purchased, a manager must review Trina’s selection and determine whether to approve the purchase. This is a description of:

Answer 43

Segregation of duties

Question 44

Which of the following statements is true?

Answer 44

It is best to use a blend of controls in order to provide optimum security

Question 45

A tool that monitors local devices to reduce potential threats from hostile software.

Answer 45

Anti-malware

Question 46

Which type of fire-suppression system is typically the safest for humans?

Answer 46

Water

Question 47

A tool that filters inbound traffic to reduce potential threats.

Answer 47

Firewall

Question 48

The logical address of a device connected to the network or Internet.

Answer 48

Internet Protocol (IP) address

Question 49

Which of the following activities is usually part of the configuration management process, but is also extremely helpful in countering potential attacks?

Answer 49

Updating and patching systems

Question 50

Triffid, Inc., has deployed anti-malware solutions across its internal IT environment. What is an additional task necessary to ensure this control will function properly?

Answer 50

Update the anti-malware solution regularly

Question 51

An IoT (Internet of Things) device is typified by its effect on or use of the _____ environment.

Answer 51

Physical

Question 52

The section of the IT environment that is closest to the external world; where we locate IT systems that communicate with the Internet.

Answer 52

DMZ (demilitarized zone)

Question 53

Which type of fire-suppression system is typically the least expensive?

Answer 53

Water

Question 54

“Wiring _____” is a common term meaning “a place where wires/conduits are often run, and equipment can be placed, in order to facilitate the use of local networks.”

Answer 54

Closet

Question 55

A device typically accessed by multiple users, often intended for a single purpose, such as managing email or web pages.

Answer 55

Server

Question 56

Which of the following would be best placed in the DMZ of an IT environment?

Answer 56

Mail server

Question 57

Cyril wants to ensure all the devices on his company’s internal IT environment are properly synchronized. Which of the following protocols would aid in this effort?

Answer 57

NTP (Network Time Protocol)

Question 58

The common term for systems that ensure proper temperature and humidity in the data center.

Answer 58

HVAC

Question 59

Gary is an attacker. Gary is able to get access to the communication wire between Dauphine’s machine and Linda’s machine and can then surveil the traffic between the two when they’re communicating. What kind of attack is this?

Answer 59

On-path

Question 60

Carol is browsing the Web. Which of the following ports is she probably using?

Answer 60

80 (HTTP traffic)

Question 61

Bert wants to add a flashlight capability to a smartphone. Bert searches the internet for a free flashlight app, and downloads it to the phone. The app allows Bert to use the phone as a flashlight, but also steals Bert’s contacts list. What kind of app is this?

Answer 61

Trojan

Question 62

A tool that inspects outbound traffic to reduce potential threats.

Answer 62

DLP (data loss prevention)

Question 63

Who dictates policy?

Answer 63

Senior management

Question 64

Data retention periods apply to ____ data.

Answer 64

All

Question 65

Dieter wants to send a message to Lupa and wants to be sure that Lupa knows the message has not been modified in transit. What technique/tool could Dieter use to assist in this effort?

Answer 65

Hashing

Question 66

The output of any given hashing algorithm is always _____.

Answer 66

The same length

Question 67

Proper alignment of security policy and business goals within the organization is important because:

Answer 67

Security policy that conflicts with business goals can inhibit productivity

Question 68

By far, the most crucial element of any security instruction program.

Answer 68

Preserve health and human safety

Question 69

Data _____ is data left behind on systems/media after normal deletion procedures have been attempted.

Answer 69

Remanence

Question 70

If two people want to use symmetric encryption to conduct a confidential conversation, how many keys do they need?

Answer 70

1

Question 71

Log data should be kept ______.

Answer 71

On a device other than where it was captured

Question 72

Triffid, Inc., wants to host streaming video files for the company’s remote users, but wants to ensure the data is protected while it’s streaming. Which of the following methods are probably best for this purpose?

Answer 72

Symmetric encryption

Question 73

The organization should keep a copy of every signed Acceptable Use Policy (AUP) on file, and issue a copy to _______.

Answer 73

The user who signed it

Question 74

Logs should be reviewed ______.

Answer 74

Continually

Question 75

Archiving is typically done when _________.

Answer 75

Data is not needed for regular work purposes