CISSP-ISSAP Exam Questions
236 real CISSP-ISSAP exam questions with expert-verified answers and explanations. Page 1 of 5.
- Question #1Infrastructure Security
You are the Security Consultant advising a company on security methods. This is a highly secure location that deals with sensitive national defense related data. They are very conc...
Man-trapPhysical SecurityTailgating PreventionBuilding Access - Question #2Infrastructure Security
You want to implement a network topology that provides the best balance for regional topologies in terms of the number of virtual circuits, redundancy, and performance while establ...
WAN topologyPartial meshNetwork redundancyVirtual circuits - Question #3Infrastructure Security
Which of the following protocols is an alternative to certificate revocation lists (CRL) and allows the authenticity of a certificate to be immediately verified?
OCSPCertificate revocationPKICRL - Question #4Identity and Access Management (IAM) Architecture
Which of the following does PEAP use to authenticate the user inside an encrypted tunnel? Each correct answer represents a complete solution. Choose two.
PEAPEAP authenticationMS-CHAP v2Wireless authentication - Question #5Identity and Access Management (IAM) Architecture
(ISC)2 CISSP-ISSAP Exam Which of the following terms refers to a mechanism which proves that the sender really sent a particular message?
Non-repudiationDigital signaturesMessage authenticationSender authentication - Question #6Identity and Access Management (IAM) Architecture
Adam works as a Security Analyst for Umbrella Inc. CEO of the company ordered him to implement two-factor authentication for the employees to access their networks. He has told him...
Two-factor authenticationSecurity tokensHardware authenticationPIN-based authentication - Question #7Infrastructure Security
Maria works as a Network Security Officer for Gentech Inc. She wants to encrypt her network traffic. The specific requirement for the encryption algorithm is that it must be a symm...
Symmetric EncryptionBlock CiphersDESNetwork Encryption - Question #8Infrastructure Security
Which of the following protocols uses public-key cryptography to authenticate the remote computer?
SSHPublic-key CryptographyAuthentication Protocols - Question #9Security Architecture Modeling
Which of the following cryptographic system services ensures that information will not be (ISC)2 CISSP-ISSAP Exam disclosed to any unauthorized person on a local network?
Cryptographic ServicesConfidentialityData ProtectionEncryption - Question #10Architect for Governance, Risk, and Compliance
Which of the following are the examples of technical controls? Each correct answer represents a complete solution. Choose three.
Technical ControlsAccess ControlNetwork ArchitectureControl Classification - Question #11Architect for Governance, Risk, and Compliance
Which of the following tenets does the CIA triad provide for which security practices are measured? Each correct answer represents a part of the solution. Choose all that apply.
CIA triadConfidentialityIntegrityAvailability - Question #12Identity and Access Management (IAM) Architecture
A helpdesk technician received a phone call from an administrator at a remote branch office. The administrator claimed to have forgotten the password for the root account on UNIX s...
Social EngineeringPretextingCredential DisclosureIdentity Verification - Question #13Infrastructure Security
You work as a Network Administrator of a TCP/IP network. You are having DNS resolution problem. Which of the following utilities will you use to diagnose the problem? (ISC)2 CISSP-...
DNS resolutionNSLOOKUPNetwork diagnosticsTCP/IP troubleshooting - Question #14Infrastructure Security
The IPSec protocol is configured in an organization's network in order to maintain a complete infrastructure for secured network communications. IPSec uses four components for this...
IPcompIPSec componentsdata compressionnetwork efficiency - Question #15Security Architecture Modeling
You work as a CSO (Chief Security Officer) for Tech Perfect Inc. You want to perform the following tasks: Develop a risk-driven enterprise information security architecture. Delive...
SABSAEnterprise architectureRisk-driven designBusiness alignment - Question #16Infrastructure Security
A network is configured on a Bus topology. Which of the following conditions could cause a network failure? Each correct answer represents a complete solution. Choose all that appl...
Bus TopologyCable TerminationNetwork FaultsCoaxial Cable - Question #17Infrastructure Security
Which of the following is an input device that is used for controlling machines such as cranes, trucks, underwater unmanned vehicles, wheelchairs, surveillance cameras, and zero tu...
JoystickSCADA systemsRemote operationIndustrial controls - Question #18Identity and Access Management (IAM) Architecture
Which of the following types of attacks is often performed by looking surreptitiously at the keyboard or monitor of an employee's computer?
Shoulder surfingPhysical securityCredential theftSocial engineering - Question #19Identity and Access Management (IAM) Architecture
A digital signature is a type of public key cryptography. Which of the following statements are true about digital signatures? Each correct answer represents a complete solution. C...
Digital SignaturesAsymmetric CryptographyPublic Key InfrastructureNon-repudiation - Question #20Identity and Access Management (IAM) Architecture
An authentication method uses smart cards as well as usernames and passwords for authentication. Which of the following authentication methods is being referred to?
Multi-factor authenticationSmart card authenticationAuthentication factors - Question #21Security Operations Architecture
You work as an Incident handling manager for Orangesect Inc. You detect a virus attack incident in the network of your company. You develop a signature based on the characteristics...
Incident EradicationMalware SignatureIncident ResponseVirus Detection - Question #22Identity and Access Management (IAM) Architecture
In which of the following access control models can a user not grant permissions to other users to see a copy of an object marked as secret that he has received, unless they have t...
Mandatory Access Control (MAC)Access Control ModelsPermission DelegationSecurity Labels - Question #23Infrastructure Security
Which of the following protocols provides connectionless integrity and data origin authentication of IP packets?
Authentication Header (AH)IPsecData origin authenticationIntegrity - Question #24Identity and Access Management (IAM) Architecture
The network you administer allows owners of objects to manage the access to those objects via access control lists. This is an example of what type of access control?
Discretionary Access ControlAccess Control ListsAuthorization - Question #25Architect for Governance, Risk, and Compliance
Which of the following processes is used to identify relationships between mission critical applications, processes, and operations and all supporting elements?
Critical path analysisBusiness continuityDependency mappingMission-critical systems - Question #26Infrastructure Security
Which of the following devices is a least expensive power protection device for filtering the electrical stream to control power surges, noise, power sags, and power spikes?
Power ProtectionUPSPower ConditioningPhysical Infrastructure - Question #27Architect for Governance, Risk, and Compliance
You work as a Project Manager for Tech Perfect Inc. You are creating a document which emphasizes the formal study of what your organization is doing currently and where it will be...
Gap AnalysisStrategic PlanningBusiness AnalysisRequirements Definition - Question #28Infrastructure Security
SSH is a network protocol that allows data to be exchanged between two networks using a secure channel. Which of the following encryption algorithms can be used by the SSH protocol...
SSH encryptionSymmetric ciphersEncryption protocols - Question #29Architect for Application Security
Sam is creating an e-commerce site. He wants a simple security solution that does not require each customer to have an individual key. Which of the following encryption methods wil...
Symmetric encryptionKey managementEncryption fundamentals - Question #30Infrastructure Security
(ISC)2 CISSP-ISSAP Exam Computer networks and the Internet are the prime mode of Information transfer today. Which of the following is a technique used for modifying messages, prov...
CryptographyEncryptionMessage confidentialityNetwork communications - Question #31Infrastructure Security
You work as a Network Administrator for Blue Bell Inc. The company has a TCP-based network. The company has two offices in different cities. The company wants to connect the two of...
L2TPVPN TunnelingTunneling ProtocolsWAN Connectivity - Question #32Infrastructure Security
John works as a Network Administrator for NetPerfect Inc. The company has a Windows-based network. John has been assigned a project to build a network for the sales department of t...
Network topologyFault toleranceLAN designMesh networking - Question #33Infrastructure Security
Which of the following encryption algorithms are based on block ciphers?
Block cipher encryptionRijndael (AES)TwofishRC4 stream cipher - Question #34Infrastructure Security
(ISC)2 CISSP-ISSAP Exam Adam works as a Network Administrator. He discovers that the wireless AP transmits 128 bytes of plaintext, and the station responds by encrypting the plaint...
WEP shared keychallenge-response802.11 authenticationwireless AP - Question #35Infrastructure Security
The OSI model is the most common networking model used in the industry. Applications, network functions, and protocols are typically referenced using one or more of the seven OSI l...
OSI modelNetwork layersLayer functionsProtocol stack - Question #36Infrastructure Security
Which of the following is the technology of indoor or automotive environmental comfort?
HVACFacilities ManagementPhysical ControlsEnvironmental Systems - Question #37Infrastructure Security
Which of the following protocols provides certificate-based authentication for virtual private networks (VPNs)?
L2TPCertificate authenticationVPN protocolsIPSec - Question #38Security Architecture Modeling
Which of the following types of ciphers are included in the historical ciphers? Each correct answer represents a complete solution. Choose two.
Substitution ciphersTransposition ciphersClassical cryptographyCipher classification - Question #39Identity and Access Management (IAM) Architecture
Which of the following are types of access control attacks? Each correct answer represents a complete solution. Choose all that apply.
Brute Force AttackSpoofingAccess Control AttacksCredential Attacks - Question #40Identity and Access Management (IAM) Architecture
Which of the following authentication protocols sends a user certificate inside an encrypted tunnel?
EAP-TLS802.1X authenticationWireless securityCertificate-based auth - Question #41Architect for Governance, Risk, and Compliance
You are calculating the Annualized Loss Expectancy (ALE) using the following formula: ALE=AV * EF * ARO What information does the AV (Asset Value) convey?
Annualized Loss ExpectancyAsset ValuationRisk MetricsQuantitative Risk Analysis - Question #42Infrastructure Security
browser's address bar, you are able to access the site. But, you are unable to access the site (ISC)2 CISSP-ISSAP Exam
DNS resolutionhostname mappingnetwork troubleshootingTCP/IP - Question #43Security Architecture Modeling
In software development, which of the following analysis is used to document the services and functions that have been accidentally left out, deliberately eliminated or still need...
Gap AnalysisRequirements AnalysisSoftware Development - Question #44Architect for Governance, Risk, and Compliance
Which of the following processes identifies the threats that can impact the business continuity of operations?
Business Impact AnalysisBusiness ContinuityThreat AssessmentDisaster Recovery - Question #45Identity and Access Management (IAM) Architecture
What are the benefits of using AAA security service in a network? Each correct answer represents a part of the solution. Choose all that apply.
AAARADIUSTACACS+Kerberos - Question #46Architect for Application Security
In which of the following SDLC phases are the software and other components of the system faithfully incorporated into the design specifications?
SDLC phasesimplementationdesign specificationssoftware development - Question #47Security Architecture Modeling
Which of the following life cycle modeling activities establishes service relationships and message exchange paths?
SOA logical designService relationshipsMessage exchangeArchitecture modeling - Question #48Identity and Access Management (IAM) Architecture
Which of the following authentication methods support mutual authentication? Each correct answer represents a complete solution. Choose two.
Mutual AuthenticationEAP-TLSMS-CHAP v2Authentication Protocols - Question #49Infrastructure Security
Which of the following keys is derived from a preshared key and Extensible Authentication Protocol (EAP)?
EAPPMK802.1XWireless Security - Question #50Identity and Access Management (IAM) Architecture
Which of the following schemes is used by the Kerberos authentication?
KerberosSymmetric key cryptographyAuthentication protocol