ISC ISSMP - ISSMPĀ®: Information Systems Security Management Professional Exam
Page: 1 / 44
Total 218 questions
Question #1 (Topic: )
Which of the following fields of management focuses on establishing and maintaining
consistency of a system's or product's performance and its functional and physical
attributes with its requirements, design, and operational information throughout its life?
consistency of a system's or product's performance and its functional and physical
attributes with its requirements, design, and operational information throughout its life?
A. Configuration management
B. Risk management
C. Procurement management
D. Change management
Answer: A
Question #2 (Topic: )
Which of the following are the ways of sending secure e-mail messages over the Internet?
Each correct answer represents a complete solution. Choose two.
Each correct answer represents a complete solution. Choose two.
A. TLS
B. PGP
C. S/MIME
D. IPSec
Answer: B,C
Question #3 (Topic: )
You work as a Senior Marketing Manger for Umbrella Inc. You find out that some of the
software applications on the systems were malfunctioning and also you were not able to
access your remote desktop session. You suspected that some malicious attack was
performed on the network of the company. You immediately called the incident response
team to handle the situation who enquired the Network Administrator to acquire all relevant
information regarding the malfunctioning. The Network Administrator informed the incident
response team that he was reviewing the security of the network which caused all these
problems. Incident response team announced that this was a controlled event not an
incident. Which of the following steps of an incident handling process was performed by the
incident response team?
software applications on the systems were malfunctioning and also you were not able to
access your remote desktop session. You suspected that some malicious attack was
performed on the network of the company. You immediately called the incident response
team to handle the situation who enquired the Network Administrator to acquire all relevant
information regarding the malfunctioning. The Network Administrator informed the incident
response team that he was reviewing the security of the network which caused all these
problems. Incident response team announced that this was a controlled event not an
incident. Which of the following steps of an incident handling process was performed by the
incident response team?
A. Containment
B. Eradication
C. Preparation
D. Identification
Answer: D
Question #4 (Topic: )
Which of the following is the process performed between organizations that have unique
hardware or software that cannot be maintained at a hot or warm site?
hardware or software that cannot be maintained at a hot or warm site?
A. Cold sites arrangement
B. Business impact analysis
C. Duplicate processing facilities
D. Reciprocal agreements
Answer: D
Question #5 (Topic: )
Which of the following involves changing data prior to or during input to a computer in an
effort to commit fraud?
effort to commit fraud?
A. Data diddling
B. Wiretapping
C. Eavesdropping
D. Spoofing
Answer: A