GISF Exam Questions

Which of the following processes is responsible for low risk, frequently occurring low cost changes?

You work as a Software Developer for uCertify Inc. You have developed a Data Access Logic (DAL) component that will be part of a distributed application. You are conducting integra...

Which of the following types of attack can guess a hashed password?

You have created a Web site, which will be used for e-commerce. You want to ensure that the transactions are highly secured. For this purpose, you have to create a system to verify...

Which of the following statements are true about security risks? Each correct answer represents a complete solution. Choose three.

You are developing an online business solution for National Institute of Meteorological and Oceanographic Research (NIMOR). A case study for the organization is given in the exhibi...

Which of the following statements about Public Key Infrastructure (PKI) are true? Each correct answer represents a complete solution. Choose two.

The IT administrator wants to implement a stronger security policy. What are the four most important security priorities for uCertify Software Systems Pvt. Ltd.? (Click the Exhibit...

Which of the following methods of encryption uses a single key to encrypt and decrypt data?

You discover that someone has been logging onto your network after office hours. After investigating this you find the login belongs to someone who left the company 12 months ago....

Which of the following refers to the ability to ensure that the data is not modified or tampered with?

Which of the following protocols implements VPN using IPSec?

Maria works as a professional Ethical Hacker. She is assigned a project to test the security of that the firewall of the server is blocking the ICMP messages, but it is not checkin...

Which of the following roles is used to ensure that the confidentiality, integrity, and availability of the services are maintained to the levels approved on the Service Level Agre...

Which of the following is MOST important to understand when developing a meaningful information security strategy?

Which of the following statements are TRUE regarding asymmetric encryption and symmetric encryption? Each correct answer represents a complete solution. Choose all that apply.

You work as the Network Administrator of TechJobs. You implement a security policy, to be in effect at all times, on the client computer in your network. While troubleshooting, ass...

Peter, a malicious hacker, wants to perform an attack. He first compromises computers distributed across the internet and then installs specialized software on these computers. He...

Which of the following can be used to protect a computer system from malware, viruses, spyware, and various types of keyloggers? Each correct answer represents a complete solution....

Which of the following cryptographic algorithms uses a single key to encrypt and decrypt data?

You are an Incident manager in Orangesect.Inc. You have been tasked to set up a new extension of your enterprise. The networking, to be done in the new extension, requires differen...

Tom works as the project manager for BlueWell Inc. He is working with his project to ensure timely and appropriate generation, retrieval, distribution, collection, storage, and ult...

This type of virus infects programs that can execute and load into memory to perform predefined steps for infecting systems. It infects files with the extensions .EXE, .COM, .BIN,...

You work in a company that accesses the Internet frequently. This makes the company's files susceptible to attacks from unauthorized access. You want to protect your company's netw...

The executive team wants you to track labor costs for your project as well as progress on task completion and the resulting dates. What information must you update for tasks to pro...

You are the security manager of Microliss Inc. Your enterprise uses a wireless network infrastructure with access points ranging 150-350 feet. The employees using the network compl...

Joseph works as a Software Developer for WebTech Inc. He wants to protect the algorithms and the techniques of programming that he uses in developing an application. Which of the f...

Which of the following U.S.C. laws is governs the fraudulent activities associated with computers?

Which of the following statements about a brute force attack is true?

Which of the following is the main purpose of using OODA loops?

Your computer continues to operate even if its disk drive has failed. This ability is known as _____.

Which of the following is the maximum variable key length for the Blowfish encryption algorithm?

Which of the following factors determine the strength of the encryption?

Which U.S. government agency is responsible for establishing standards concerning cryptography for nonmilitary use?

Which of the following types of cipher encrypts alphabetic text by using a series of different Caesar ciphers based on the letters of a keyword?

The method used to encrypt messages by transposing or scrambling the characters in a certain manner is known as ______.

Which of the following policies define how Identification and Authorization occur and determine access control, audits, and network connectivity?

Which of the following service provider classes is used to create a digital signature?

Which of the following is a pillar of Information Assurance CIA triad?

Which of the following is an examination of the controls within an Information technology (IT) infrastructure?

Which of the following encryption techniques does digital signatures use?

What are packet sniffers?

In packet filtering types of firewalls, which of the following specifies what traffic can and cannot traverse the firewall?

Bluetooth uses the _________ specification in the ________ band with FHSS technology.

Which Wireless network standard operates at 2.4 GHz and transfers data at a rate of 54 Mbps?

What is VeriSign?

Which of the following devices or hardware parts employs SMART model system as a monitoring system?

Key Distribution Center is used in which authentication method?

Which of the following statements about Public Key Infrastructure (PKI) is true?

Which of the following logs contains events pertaining to security as defined in the Audit policy?