312-76 Exam Questions

Which of the following roles is responsible for the review and risk analysis of all the contracts on regular basis?

Which of the following is established during the Business Impact Analysis by the owner of a process in accepted business continuity planning methodology?

Which of the following options is an intellectual property right to protect inventions?

Pete works as a Network Security Officer for Gentech Inc. He wants to encrypt his network traffic. The specific requirement for the encryption algorithm is that it must be a symmet...

Which of the following is the simulation of the disaster recovery plans?

You work as the project manager for Bluewell Inc. Your project has several risks that will affect several stakeholder requirements. Which project management plan will define who wi...

Which of the following levels of RAID provides security features that are availability, enhanced performance, and fault tolerance?

Which of the following backup sites takes the longest recovery time?

Peter works as a Technical Representative in a CSIRT for SecureEnet Inc. His team is called to investigate the computer of an employee, who is suspected for classified data theft....

Which of the following defines the communication link between a Web server and Web applications?

Which of the following plans is documented and organized for emergency response, backup operations, and recovery maintained by an activity as part of its security program that will...

Which of the following features of the Cisco MDS 9000 SAN Extension over IP Package help in implementing efficient FCIP-based business-continuity and disaster-recovery solutions? E...

Which of the following methods is a means of ensuring that system changes are approved before being implemented, and the implementation is complete and accurate?

Which of the following roles is responsible for review and risk analysis of all contracts on a regular basis?

Which of the following statements about a certification authority (CA) is true?

BS 7799 is an internationally recognized ISM standard that provides high level, conceptual recommendations on enterprise security. BS 7799 is basically divided into three parts. Wh...

An organization monitors the hard disks of its employees' computers from time to time. Which policy does this pertain to?

Which of the following disaster recovery tests includes the operations that shut down at the primary site, and are shifted to the recovery site according to the disaster recovery p...

Which of the following backup sites is the best way for rapid recovery if you do not need the full recovery temporarily?

Which of the following subphases are defined in the maintenance phase of the life cycle models? Each correct answer represents a part of the solution. Choose all that apply.

Which of the following best describes the identification, analysis, and ranking of risks?

Which of the following procedures is to reduce the risk to personnel, property, and other assets while minimizing work disorders in the event of an emergency?

Which of the following procedures is designed to enable security personnel to identify, mitigate, and recover from malicious computer incidents, such as unauthorized access to a sy...

You are working as a project manager in your organization. You are nearing the final stages of project execution and looking towards the final risk monitoring and controlling activ...

Which of the following elements of BCP process includes the areas of plan implementation, plan testing, and ongoing plan maintenance, and also involves defining and documenting the...

Allen works as a professional Computer Hacking Forensic Investigator. A project has been assigned to him to investigate a computer, which is used by the suspect to sexually harass...

Which of the following should the administrator ensure during the test of a disaster recovery plan?

Which of the following governance bodies provides management, operational, and technical controls to satisfy the security requirements?

Against which of the following does SSH provide protection? Each correct answer represents a complete solution. Choose two.

A project plan includes the Work Breakdown Structure (WBS) and cost estimates. Which of the following are the parts of a project plan? Each correct answer represents a complete sol...

Which of the following statements is related to residual risks?

You work as a project manager for BlueWell Inc. You are working with your team members on the risk responses in the project. Which risk response will likely cause a project to use...

You want to use PGP files for steganography. Which of the following tools will you use to accomplish the task?

You are working as a Project Manager in your organization. You are nearing the final stages of project execution, and looking towards the final risk monitoring and controlling acti...

Software Development Life Cycle (SDLC) is a logical process used by the programmers to develop software. Which SDLC phase meets the following audit objectives? - System and data ar...

Mark works as a Network Administrator for NetTech Inc. Mark is testing the disaster recovery plan of the company. During the testing of the recovery plan, he finds that some server...

Which of the following administrative policy controls requires individuals or organizations to be engaged in good business practices relative to the organization's industry?

Which of the following processes is involved in identifying, measuring, and controlling events?

Which of the following acts affects all public companies subject to US security laws?

Which of the following acts of information security governance affects the financial institutions?

Which of the following modes of operation supports users with different clearances and data at various classification levels?

Which of the following processes acts as a control measure that provides some amount of protection to the assets?

In which of the following prototyping, a version of the system is built to check the requirements and is then discarded?

In which of the following prototyping, a prototype of a system is built and then evolves into the final system?

Which of the following terms best describes the presence of any potential event that causes an undesirable impact on the organization?

Which of the following DRP tests is plan distributed, and reviewed by the business units for its thoroughness and effectiveness?

Which of the following SSE-CMM security engineering Process Areas (PA) specifies the security needs?

Which of the following provides a means of predicting the outcome of the next software project conducted by an organization?

Which of the following SSE-CMM security engineering Process Areas (PA) provides the security input?

Which of the following terms describes the determination of the effect of changes to the information system on the security of the information system?