Practice Questions

Question 1

The Bell and Lapaluda Access Control model is a form of:
- MAC
- DAC
- RBAC
- ABAC

Answer 1

MAC

Question 2

In which cloud model does the cloud customer have LESS responsibility over the infrastructure?

• PaaS
• FaaS
• IaaS
• SaaS

Answer 2

SaaS

Question 3

Which of these tools is commonly used to crack passwords?

• Wireshark
• John The Ripper
• NSlookup
• Burp Suite

Answer 3

John The Ripper

Question 4

Which type of attack will most effectively provide privileged access (root access in Unix/Linux platforms) to a computer while hiding its presence?

• Phishing
• Rootkits
• Cross-Site Scripting
• Trojans

Answer 4

Rootkits

Question 5

Which devices would be more effective in detecting an intrusion into a network?

• Routers
• Firewalls
• HIDS
• NIDS

Answer 5

NIDS

Question 6

Which of these would be the best option if a network administrator needs to control access to a network?

• NAC
• IDS
• HIDS
• SIEM

Answer 6

NAC

Question 7

In which of the following phases of an Incident Recovery Plan are incident responses prioritized?

• Post-incident Activity
• Contentment, Eradication and Recovery
• Detection and Analysis
• Preparation

Answer 7

Detection and Analysis

Question 8

Which of the following are NOT types of security controls?

• Storage Controls
• System-specific controls
• Hybrid controls
• Common controls

Answer 8

Storage Controls

Question 9

According to the canon “Provide diligent and competent service to principals”, (ISC)² professionals are to:

• Promote the understanding and acceptance of prudent information security measures
• Avoid apparent or actual conflicts of interest
• Take care not to tarnish the reputation of other professionals through malice or indifference
• Treat all members fairly and when resolving conflicts consider public safety and duties to principals, individuals and the profession in that order

Answer 9

Avoid apparent or actual conflicts of interest

Question 10

Which of the following is NOT a protocol of the OSI Level 3?

• IP
• ICMP
• SNMP
• IGMP

Answer 10

SNMP

Question 11

Which of the following is a public IP?

• 10.221.123.1
• 192.168.123.1
• 13.16.123.1
• 172.16.123.1

Answer 11

13.16.123.1

Question 12

Which port is used to secure communication over the web (HTTPS)?

• 443
• 69
• 25
• 80

Answer 12

443

Question 13

The SMTP protocol operates at OSI Level:

• 3
• 25
• 23
• 7

Answer 13

7

Question 14

The address 8be2:4382:8d84:7ce2:ec0f:3908:d29a:903a is an:

• MAC address
• Web address
• IPv4 address
• IPv6 address

Answer 14

IPv6 address

Question 15

Which of these is NOT a change management component?

• RFC
• Approval
• Governance
• Rollback

Answer 15

Governance

Question 16

Which of these is the PRIMARY objective of a Disaster Recovery Plan?

• Restore company operation to the last-known reliable operation state
• Outline a safe escape procedure for the organization’s personnel
• Communicate to the responsible entities the damage caused to operations in the event of a disaster
• Maintain crucial company operations in the event of a disaster

Answer 16

• Restore company operation to the last-known reliable operation state

Question 17

What is an effective way of hardening a system?

• Run a vulnerability scan
• Patch the system
• Have an IDS in place
• Create a DMZ for web application services

Answer 17

Patch the system

Question 18

Which access control model can grant access to a given object based on complex rules?

• MAC
• DAC
• ABAC
• RBAC

Answer 18

ABAC

Question 19

What type of security control is the biometric reader that grants access to the data center building?

• Physical control
• authorization control
• administrative control
• Technical control

Answer 19

Physical Control