ISC CISSP-ISSEP - Information Systems Security Engineering Professional Exam
Page: 2 / 43
Total 214 questions
Question #6 (Topic: Topic 1)
Part of your change management plan details what should happen in the change control system for your project. Theresa, a junior project manager, asks what the
configuration management activities are for scope changes. You tell her that all of the following are valid configuration management activities except for which
one
configuration management activities are for scope changes. You tell her that all of the following are valid configuration management activities except for which
one
A. Configuration Item Costing
B. Configuration Identification
C. Configuration Verification and Auditing
D. Configuration Status Accounting
Answer: A
Question #7 (Topic: Topic 1)
Which of the following professionals is responsible for starting the Certification & Accreditation (C&A) process
A. Authorizing Official
B. Information system owner
C. Chief Information Officer (CIO)
D. Chief Risk Officer (CRO)
Answer: B
Question #8 (Topic: Topic 1)
Which of the following security controls is a set of layered security services that address communications and data security problems in the emerging Internet and
intranet application space
intranet application space
A. Internet Protocol Security (IPSec)
B. Common data security architecture (CDSA)
C. File encryptors
D. Application program interface (API)
Answer: B
Question #9 (Topic: Topic 1)
Which of the following protocols is used to establish a secure terminal to a remote network device
A. WEP
B. SMTP
C. SSH
D. IPSec
Answer: C
Question #10 (Topic: Topic 1)
Which of the following elements of Registration task 4 defines the system's external interfaces as well as the purpose of each external interface, and the
relationship between the interface and the system
relationship between the interface and the system
A. System firmware
B. System software
C. System interface
D. System hardware
Answer: C
