ISC ISSEP - ISSEP Information Systems Security Engineering Professional Exam
Page: 1 / 43
Total 213 questions
Question #1 (Topic: )
FITSAF stands for Federal Information Technology Security Assessment Framework. It is a
methodology for assessing the security of information systems. Which of the following
FITSAF levels shows that the procedures and controls are tested and reviewed
methodology for assessing the security of information systems. Which of the following
FITSAF levels shows that the procedures and controls are tested and reviewed
A. Level 4
B. Level 5
C. Level 1
D. Level 2
E. Level 3
Answer: A
Question #2 (Topic: )
Which of the following is a type of security management for computers and networks in
order to identify security breaches
order to identify security breaches
A. IPS
B. IDS
C. ASA
D. EAP
Answer: B
Question #3 (Topic: )
Which of the following types of firewalls increases the security of data packets by
remembering the state of connection at the network and the session layers as they pass
through the filter
remembering the state of connection at the network and the session layers as they pass
through the filter
A. Stateless packet filter firewall
B. PIX firewall
C. Stateful packet filter firewall
D. Virtual firewall
Answer: C
Question #4 (Topic: )
Which of the following federal laws is designed to protect computer data from theft
A. Federal Information Security Management Act (FISMA)
B. Computer Fraud and Abuse Act (CFAA)
C. Government Information Security Reform Act (GISRA)
D. Computer Security Act
Answer: B
Question #5 (Topic: )
Which of the following is used to indicate that the software has met a defined quality level
and is ready for mass distribution either by electronic means or by physical media
and is ready for mass distribution either by electronic means or by physical media
A. ATM
B. RTM
C. CRO
D. DAA
Answer: B
