Browse Exams Pricing

ExamsCISSPQuestions

CISSP Exam Questions

1,535 real CISSP exam questions with expert-verified answers and explanations. Page 28 of 31.

Question #1351Communication and Network Security
A technician wants to install a WAP in the center of a room that provides service in a radius surrounding a radio. Which of the following antenna types should the AP utilize?
Wireless access point (WAP)antenna typesomnidirectionalRF
Question #1352Security Assessment and Testing
To comply with industry requirements, a security assessment on the cloud server should identify which protocols and weaknesses are being exposed to attackers on the Internet. Which...
Security assessmentvulnerability scanningport scanningNmap
Question #1353Communication and Network Security
Which of the following uses the destination IP address to forward packets?
RouterIP addressingpacket forwardingnetwork layers
Question #1354Communication and Network Security
Which of the following would need to be configured to ensure a device with a specific MAC address is always assigned the same IP address from DHCP?
DHCPIP address assignmentMAC addressnetwork configuration
Question #1355Communication and Network Security
Wireless users are reporting intermittent Internet connectivity. Connectivity is restored when the users disconnect and reconnect, utilizing the web authentication process each tim...
Wireless troubleshootingcaptive portalsession timeoutweb authentication
Question #1356Communication and Network Security
A fiber link connecting two campus networks is broken. Which of the following tools should an engineer use to detect the exact break point of the fiber link?
Fiber opticsnetwork troubleshootingOTDRcable fault location
Question #1357Communication and Network Security
Two remote offices need to be connected securely over an untrustworthy MAN. Each office needs to access network shares at the other site. Which of the following will BEST provide t...
VPNsite-to-site VPNsecure connectivitynetwork architecture
Question #1358Security Operations
An IT technician suspects a break in one of the uplinks that provides connectivity to the core switch. Which of the following command-line tools should the technician use to determ...
Network troubleshootingswitch commandsuplink statusshow interface
Question #1359Communication and Network Security
Which of the following needs to be tested to achieve a Cat 6a certification for a company's data cabling?
Cat 6acablingpatch panelnetwork infrastructure
Question #1360Communication and Network Security
A technician is troubleshooting a client's report about poor wireless performance. Using a client monitor, the technician notes the following information: Which of the following is...
wireless performancechannel overlaptroubleshootingWi-Fi
Question #1361Communication and Network Security
Which of the following types of devices can provide content filtering and threat protection, and manage multiple IPSec site-to-site connections?
Next-generation firewallcontent filteringthreat protectionIPSec VPN
Question #1362Communication and Network Security
A network administrator is designing a new datacenter in a different region that will need to communicate to the old datacenter with a secure connection. Which of the following acc...
datacenter connectivitysite-to-site VPNsecure communicationnetwork design
Question #1363Communication and Network Security
Which of the following types of datacenter architectures will MOST likely be used in a large SDN and can be extended beyond the datacenter?
datacenter architectureSDNspine and leafnetwork design
Question #1364Communication and Network Security
At the destination host, which of the following OSI model layers will discard a segment with a bad checksum in the UDP header?
OSI modelTransport layerUDPchecksum
Question #1365Security Operations
A network administrator is configuring a database server and would like to ensure the database engine is listening on a certain port. Which of the following commands should the adm...
network utilitiesnetstatport listeningserver configuration
Question #1366Communication and Network Security
Which of the following routing protocols is used to exchange route information between public autonomous systems?
routing protocolsBGPautonomous systemsinternet routing
Question #1367Software Development Security
Where can the Open Web Application Security Project (OWASP) list of associated vulnerabilities be found?
OWASPweb application securityvulnerabilitiesOWASP Top 10
Question #1368Asset Security
What is the BEST approach to anonymizing personally identifiable information (PII) in a test environment?
PII anonymizationdata maskingtest datadata privacy
Question #1369Communication and Network Security
A customer continues to experience attacks on their email, web, and File Transfer Protocol (FTP) servers. These attacks are impacting their business operations. Which of the follow...
network securityfirewallserver protectionperimeter security
Question #1370Security Architecture and Engineering
Which security feature fully encrypts code and data as it passes to the servers and only decrypts below the hypervisor layer?
trusted execution environmentsTEEdata encryptionvirtualization security
Question #1371Software Development Security
Which of the following techniques evaluates the secure Bet principles of network or software architectures?
threat modelingsecurity architecturesoftware securityrisk assessment
Question #1372Security and Risk Management
Which of the following is security control volatility?
security controlvolatilitychange management
Question #1373Security Operations
When performing an investigation with the potential for legal action, what should be the analyst's FIRST consideration?
digital forensicslegal considerationsauthorizationevidence collection
Question #1374Identity and Access Management (IAM)
Which of the following terms is used for online service providers operating within a federation?
identity federationrelying partySAMLidentity provider
Question #1375Asset Security
The Chief Information Security Officer (CISO) of a large financial institution is responsible for implementing the security controls to protect the confidentiality and integrity of...
data protectionencryptiondata in transitdata at restconfidentiality
Question #1376Software Development Security
Who is the BEST person to review developed application code to ensure it has been tested and verified?
code reviewquality assurancesoftware development lifecycleseparation of duties
Question #1377Security and Risk Management
A bank failed to meet service-level agreements (SLA) with customers after suffering from a database failure of the transaction processing system (TPS) that resulted in delayed fina...
business impact analysisBIAdisaster recoveryregulatory compliancematerial weakness
Question #1378Asset Security
What is the MOST effective way to ensure that a cloud service provider does not access a customer's data stored within its infrastructure?
cloud securitydata encryptiondata ownershipBYOKCSP responsibility
Question #1379Security and Risk Management
Prohibiting which of the following techniques is MOST helpful in preventing users from obtaining confidential data by using statistical queries?
Statistical inferenceData privacyData anonymizationConfidentiality
Question #1380Identity and Access Management
Clothing retailer employees are provisioned with user accounts that provide access to resources at partner businesses. All partner businesses use common identity and access managem...
Federated identityIdentity providerIAM protocolsSSO
Question #1381Security Architecture and Engineering
Using Address Space Layout Randomization (ASLR) reduces the potential for which of the following attacks?
ASLRMemory protectionHeap overflowExploit mitigation
Question #1382Security Operations
Which of the following ensures old log data is not overwritten?
Log managementData retentionAuditingSecurity logging
Question #1383Communication and Network Security
What is the benefit of using Network Admission Control (NAC)?
NACEndpoint securityNetwork access controlSecurity posture
Question #1384Security and Risk Management
The European Union (EU) General Data Protection Regulation (GDPR) requires organizations to implement appropriate technical and organizational measures to ensure a level of securit...
GDPRData privacyData maskingEncryption
Question #1385Security Architecture and Engineering
Which of the following is the BEST approach to implement multiple servers on a virtual system?
Virtualization securityLeast privilegeSeparation of dutiesSystem hardening
Question #1386Security Assessment and Testing
Which of the following is the MOST important consideration in selecting a security testing method based on different Radio-Frequency Identification (RFID) vulnerability types?
Attack surfaceRFID securitySecurity testingVulnerability assessment
Question #1387Software Development Security
A financial services organization has employed a security consultant to review processes used by employees across various teams. The consultant interviewed a member of the applicat...
Threat modelingSDLCRisk assessmentChange management
Question #1388Security Assessment and Testing
When testing password strength, which of the following is the BEST method for brute forcing passwords?
Password crackingBrute-force attackHashingOffline attack
Question #1389Identity and Access Management
What is a use for mandatory access control (MAC)?
Mandatory Access ControlAccess control modelsData labelsObject security
Question #1390Security Operations
Which of the following MUST be done before a digital forensics investigator may acquire digital evidence?
Digital forensicsLegal authorityEvidence acquisitionIncident response
Question #1391Software Development Security
A security engineer is required to integrate security into a software project that is implemented by small groups test quickly, continuously, and independently develop, test, and d...
DevOpsSDLCSecurity integrationAgile development
Question #1392Security Assessment and Testing
An authentication system that uses challenge and response was recently implemented on an organization's network, because the organization conducted an annual penetration test showi...
Pass-the-TicketLateral movementPenetration testingAuthentication attacks
Question #1393Asset Security
Which of the following is an example of a vulnerability of full-disk encryption (FDE)?
Full-disk encryptionData at restEncryption vulnerabilitiesDevice security
Question #1394Security and Risk Management
What is the PRIMARY purpose of creating and reporting metrics for a security awareness, training, and education program?
Security awarenessTraining metricsProgram effectivenessRisk management
Question #1395Identity and Access Management
Which one of the following BEST protects vendor accounts that are used for emergency maintenance?
Vendor accessLeast privilegeJust-in-time accessAccess control
Question #1396Security Architecture and Engineering
Which part of an operating system (OS) is responsible for providing security interfaces among the hardware, OS, and other parts of the computing system?
Reference monitorOS securitySecurity kernelTrusted Computing Base
Question #1397Security Operations
The Industrial Control System (ICS) Computer Emergency Response Team (CERT) has released an alert regarding ICS-focused malware specifically propagating through Windows-based busin...
ICS securityDigital forensicsData volatilityIncident response
Question #1398Security Operations
To minimize the vulnerabilities of a web-based application, which of the following FIRST actions will lock down the system and minimize the risk of an attack?
Patch managementVulnerability managementSystem hardeningWeb application security
Question #1399Communication and Network Security
A hospital has allowed virtual private networking (VPN) access to remote database developers. Upon auditing the internal firewall configuration, the network administrator discovere...
VPNsplit tunnelingnetwork securityfirewall configuration
Question #1400Security Assessment and Testing
A cloud hosting provider would like to provide a Service Organization Control (SOC) report relevant to its security program. This report should an abbreviated report that can be fr...
SOC reportscomplianceauditingthird-party risk

PreviousPage 28 of 31Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.