GISF Exam Questions

Your company is covered under a liability insurance policy, which provides various liabilitycoverage for information security risks, including any physical damage of assets, hackin...

You have successfully installed an IRM server into your environment. This IRM server will be utilized to protect the company's videos, which are available to all employees but cont...

You work as a security manager for Qualxiss Inc. Your Company involves OODA loop for resolvingand deciding over company issues. You have detected a security breach issue in your co...

How should you configure the Regional Centers' e-mail, so that it is secure and encrypted? (Click the Exhibit button on the toolbar to see the case study.)

How long are cookies in effect if no expiration date is set?

You work as a Network Administrator for ABC Inc. The company has a secure wireless network. However, in the last few days, an attack has been taking place over and over again. This...

Which of the following statements are true about Dsniff? Each correct answer represents a complete solution. Choose two.

Based on the information given in the case study, which two authentication methods should youuse to allow customers to access their photos on the Web site? (Click the Exhibit butto...

Which of the following are the goals of the cryptographic systems? Each correct answer represents a complete solution. Choose three.

John works as an Exchange Administrator for Apple Inc. The company has a Windows 2003 ActiveDirectory domain-based network. The network contains several Windows Server 2003 servers...

You are the project manager of SST project. You are in the process of collecting and distributing performance information including status report, progress measurements, and foreca...

John works as a Network Administrator for Perfect Solutions Inc. The company has a Linux- based network. The company is aware of various types of security attacks and wants to impe...

Which of the following protocols provides secured transaction of data between two computers?

A firewall is a combination of hardware and software, used to provide security to a network. It isused to protect an internal network or intranet against unauthorized access from t...

Which of the following concepts represent the three fundamental principles of informationsecurity? Each correct answer represents a complete solution. Choose three.

You work as a Software Developer for Mansoft Inc. You create an application. You want to use the application to encrypt data. You use the HashAlgorithmType enumeration to specify t...

John works as a professional Ethical Hacker. He has been assigned a project to test the security He injects the virus on the server and, as a result, the server becomes infected wi...

Which of the following types of virus is capable of changing its signature to avoid detection?

Which of the following protocols can help you get notified in case a router on a network fails?

Computer networks and the Internet are the prime mode of Information transfer today. Which of the following is a technique used for modifying messages, providing Information and Cy...

In a complex network, Router transfers data packets by observing some form of parameters or metrics provided in the routing table. Which of the following metrics is NOT included in...

Mark is implementing security on his e-commerce site. He wants to ensure that a customer sending a message is really the one he claims to be. Which of the following techniques will...

You work as a Network Administrator for Net World Inc. The company has a TCP/IP-based network. You have configured an Internet access router on the network. A user complains that h...

You are a Consumer Support Technician. You are helping a user troubleshoot computer-related issues. While troubleshooting the user's computer, you find a malicious program similar...

Which of the following provides a credential that can be used by all Kerberos-enabled servers and applications?

You work as an Exchange Administrator for TechWorld Inc. The company has a Windows 2008 Active Directory-based network. The network contains an Exchange Server 2010 organization. T...

You are a Product manager of Marioxiss Inc. Your company management is having a conflict with another company Texasoftg Inc. over an issue of security policies. Your legal advisor...

You work as the Senior Project manager in Dotcoiss Inc. Your company has started a software project using configuration management and has completed 70% of it. You need to ensure t...

Availability Management allows organizations to sustain the IT service availability to support the business at a justifiable cost. Which of the following elements of Availability M...

Your company is going to add wireless connectivity to the existing LAN. You have concerns about the security of the wireless access and wish to implement encryption. Which of the f...

Which of the following tools can be used to perform tasks such as Windows passwordcracking, Windows enumeration, and VoIP session sniffing?

Which of the following tools combines two programs, and also encrypts the resulting package in anattempt to foil antivirus programs?

What does a firewall check to prevent certain ports and applications from getting the packets intoan Enterprise?

You are the Network Administrator for a large corporate network. You want to monitor all networktraffic on your local network for suspicious activities and receive a notification w...

The SALES folder has a file named XFILE.DOC that contains critical information about yourcompany. This folder resides on an NTFS volume. The company's Senior Sales Manager asks you...

NIST Special Publication 800-50 is a security awareness program. It is designed for those people whoare currently working in the information technology field and want to the inform...

You are the project manager of the HHH Project. The stakeholders for this project are scatteredacross the world and you need a method to promote interaction. You determine that a W...

A Cisco Unified Wireless Network has an AP that does not rely on the central control device of thenetwork. Which type of AP has this characteristic?

Which of the following monitors program activities and modifies malicious activities on a system?

Which of the following statements is not true about a digital certificate?

Which of the following Web attacks is performed by manipulating codes of programminglanguages such as SQL, Perl, Java present in the Web pages?

Which of the following Acts enacted in United States allows the FBI to issue National SecurityLetters (NSLs) to Internet service providers (ISPs) ordering them to disclose records...

Which of the following does an anti-virus program update regularly from its manufacturer's Website?

You work as a Network Administrator for Infonet Inc. The company has a Windows Server 2008 domainbasednetwork. The network has three Windows Server 2008 member servers and 150 Wind...

Hardening a system is one of the practical methods of securing a computer system. Which of thefollowing techniques is used for hardening a computer system?

You work as a security manager in Mariotiss Inc. Your enterprise has been facing network andsoftware security threats since a few months. You want to renew your current security po...

You and your project team have identified the project risks and now are analyzing the probability andimpact of the risks. What type of analysis of the risks provides a quick and hi...

You are concerned about outside attackers penetrating your network via your company Web server. You wish to place your Web server between two firewalls. One firewall between the We...

In which of the following access control models can a user not grant permissions to other users tosee a copy of an object marked as secret that he has received, unless they have th...

According to the case study, what protocol should be used to protect a customer's privacy and creditcard information? (Click the Exhibit button on the toolbar to see the case study...