(ISC)2(ISC)2
CISSP · Question #287
CISSP Question #287: Real Exam Question with Answer & Explanation
Sign in or unlock CISSP to reveal the answer and full explanation for question #287. The question stem and answer options stay visible for context.
Submitted by packet_pusher· Mar 5, 2026Security Assessment and Testing
Question
An organization regularly conducts its own penetration tests. Which of the following scenarios MUST be covered for the test to be effective?
Options
- AThird-party vendor with access to the system
- BSystem administrator access compromised
- CInternal attacker with access to the system
- DInternal user accidentally accessing data
Unlock CISSP to see the answer
You've previewed enough free CISSP questions. Unlock CISSP for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#penetration testing#attack surface#third-party risk#vendor security