SSCP Exam Questions
1,274 real SSCP exam questions with expert-verified answers and explanations. Page 11 of 26.
- Question #507Security Concepts and Practices
To understand the 'whys' in crime, many times it is necessary to understand MOM. Which of the following is not a component of MOM?
MOM modelMotive Opportunity MeansThreat analysisIncident investigation - Question #508Security Concepts and Practices
In the statement below, fill in the blank: Law enforcement agencies must get a warrant to search and seize an individual's property, as stated in the _____ Amendment.
Fourth AmendmentPrivacyLegal ComplianceSearch and Seizure - Question #509Risk Identification, Monitoring and Analysis
Controls are implemented to:
Security ControlsRisk ManagementRisk Mitigation - Question #510Risk Identification, Monitoring and Analysis
What can be described as a measure of the magnitude of loss or impact on the value of an asset?
Exposure factorRisk analysisLoss calculationAsset valuation - Question #511Security Concepts and Practices
Computer security should be first and foremost which of the following:
Cost-effectivenessSecurity PrinciplesRisk ManagementSecurity Governance - Question #512Risk Identification, Monitoring and Analysis
Which of the following best allows risk management results to be used knowledgeably?
Risk ManagementUncertainty AnalysisRisk AssessmentDecision Making - Question #513Risk Identification, Monitoring and Analysis
What can be best defined as the examination of threat sources against system vulnerabilities to determine the threats for a particular system in a particular operational environmen...
Threat analysisVulnerabilityRisk assessmentSecurity concepts - Question #514Incident Response and Recovery
The first step in the implementation of the contingency plan is to perform:
Contingency PlanningData BackupDisaster RecoveryBusiness Continuity - Question #515Risk Identification, Monitoring and Analysis
The MOST common threat that impacts a business's ability to function normally is:
Threat IdentificationBusiness ContinuityAvailabilityRisk Assessment - Question #516Incident Response and Recovery
Failure of a contingency plan is usually:
Contingency PlanningManagement ResponsibilityBusiness ContinuityDisaster Recovery - Question #517Incident Response and Recovery
Within the legal domain what rule is concerned with the legality of how the evidence was gathered ?
Legal principlesEvidence admissibilityExclusionary ruleIncident response - Question #518Incident Response and Recovery
Computer-generated evidence is considered:
Digital EvidenceEvidence ClassificationLegal Concepts - Question #519Incident Response and Recovery
Which of the following would be MOST important to guarantee that the computer evidence will be admissible in court?
Digital ForensicsEvidence HandlingChain of CustodyLegal Admissibility - Question #520Incident Response and Recovery
Which of the following would best describe secondary evidence?
Evidence typesSecondary evidenceBest evidence ruleDigital forensics - Question #521Incident Response and Recovery
Why would a memory dump be admissible as evidence in court?
Memory ForensicsDigital ForensicsEvidence AdmissibilitySystem State - Question #522Security Concepts and Practices
Which type of attack would a competitive intelligence attack best classify as?
Competitive intelligenceAttack classificationBusiness attack typesThreat categories - Question #523Risk Identification, Monitoring and Analysis
Which of the following is an advantage of a qualitative over a quantitative risk analysis?
Risk AnalysisQualitative Risk AnalysisRisk Prioritization - Question #524Security Concepts and Practices
What is defined as inference of information from other, intermediate, relevant facts?
Evidence typesCircumstantial evidenceLegal conceptsForensics basics - Question #525Security Concepts and Practices
Under the Business Exemption Rule to the hearsay evidence, which of the following exceptions would have no bearing on the inadmissibility of audit logs and audit trails in a court...
Legal and Regulatory ComplianceEvidence AdmissibilityAudit LogsHearsay Rule - Question #526Risk Identification, Monitoring and Analysis
Which of the following categories of hackers poses the greatest threat?
Insider ThreatThreat ActorsRisk AssessmentSecurity Threats - Question #527Incident Response and Recovery
Which of the following best defines a Computer Security Incident Response Team (CSIRT)?
CSIRTIncident ResponseSecurity OperationsTeam Functions - Question #528Security Concepts and Practices
Under the principle of culpable negligence, executives can be held liable for losses that result from computer system breaches if:
Culpable NegligenceExecutive LiabilityDue CareInformation Security Governance - Question #529Security Concepts and Practices
The deliberate planting of apparent flaws in a system for the purpose of detecting attempted penetrations or confusing an intruder about which flaws to exploit is called:
EnticementDeception TechnologyHoneypotsIntrusion Detection - Question #530Incident Response and Recovery
Which element must computer evidence have to be admissible in court?
Evidence admissibilityDigital evidenceLegal requirementsForensics - Question #531Security Operations and Administration
For which areas of the enterprise are business continuity plans required?
Business Continuity PlanningEnterprise SecurityOrganizational Resilience - Question #532Risk Identification, Monitoring and Analysis
Which of the following will a Business Impact Analysis NOT identify?
Business Impact AnalysisBusiness ContinuityDisaster RecoveryRisk Management - Question #533Incident Response and Recovery
What is a hot-site facility?
Disaster RecoveryBusiness ContinuityHot SiteRecovery Sites - Question #534Incident Response and Recovery
Which of the following best describes remote journaling?
Remote JournalingDisaster RecoveryBusiness ContinuityData Replication - Question #535Incident Response and Recovery
All of the following can be considered essential business functions that should be identified when creating a Business Impact Analysis (BIA) except one. Which of the following woul...
Business Impact Analysis (BIA)Business Continuity Planning (BCP)Critical Business Functions - Question #536Risk Identification, Monitoring and Analysis
Of the following, which is NOT a specific loss criteria that should be considered while developing a BIA?
Business Impact Analysis (BIA)Risk AssessmentLoss Criteria - Question #537Incident Response and Recovery
Of the reasons why a Disaster Recovery plan gets outdated, which of the following is not true?
Disaster Recovery Plan (DRP)DRP maintenanceAuditingPlan lifecycle - Question #538Security Operations and Administration
Which backup type run at regular intervals would take the least time to complete?
Backup typesData protectionData recovery - Question #539Security Operations and Administration
What is electronic vaulting?
electronic vaultingdata backupoff-site storagedisaster recovery - Question #540Incident Response and Recovery
After a company is out of an emergency state, what should be moved back to the original site first?
Disaster RecoveryBusiness ContinuityRecovery PlanningReturn to Operations - Question #541Incident Response and Recovery
How often should tests and disaster recovery drills be performed?
Disaster RecoveryBusiness Continuity PlanningDrillsTesting Frequency - Question #542Incident Response and Recovery
Business Continuity Planning (BCP) is not defined as a preparation that facilitates:
Business Continuity PlanningDisaster RecoveryRecovery OperationsCritical Business Functions - Question #543Cryptography
Which of the following is true about Kerberos?
KerberosAuthentication ProtocolSymmetric CryptographyNetwork Authentication - Question #544Cryptography
The RSA algorithm is an example of what type of cryptography?
RSA algorithmAsymmetric cryptographyPublic key cryptographyCryptography types - Question #545Cryptography
Kerberos depends upon what encryption method?
KerberosSymmetric EncryptionSecret Key CryptographyAuthentication Protocols - Question #546Cryptography
The DES algorithm is an example of what type of cryptography?
DESSymmetric CryptographySecret Key CryptographyCryptographic Algorithms - Question #547Cryptography
Which of the following encryption methods is known to be unbreakable?
One-time padCryptography principlesEncryption strength - Question #548Cryptography
What algorithm was DES derived from?
DESSymmetric EncryptionCryptographic HistoryAlgorithm Origin - Question #549Cryptography
What is a characteristic of using the Electronic Code Book mode of DES encryption?
ECB modeBlock cipher modesDES encryption - Question #550Cryptography
Where parties do not have a shared secret and large quantities of sensitive information must be passed, the most efficient means of transferring information is to use Hybrid Encryp...
Hybrid EncryptionPublic Key CryptographySymmetric Key CryptographyKey Exchange - Question #551Cryptography
Public Key Infrastructure (PKI) uses asymmetric key encryption between parties. The originator encrypts information using the intended recipient's "public" key in order to get conf...
PKIAsymmetric CryptographyIdentity VerificationDigital Certificates - Question #552Cryptography
Which of the following statements is true about data encryption as a method of protecting data?
Data EncryptionKey ManagementCryptographic PrinciplesData Protection - Question #553Cryptography
Which type of algorithm is considered to have the highest strength per bit of key length of any of the asymmetric algorithms?
Cryptography AlgorithmsAsymmetric CryptographyElliptic Curve CryptographyKey Strength - Question #554Cryptography
How many bits is the effective length of the key of the Data Encryption Standard algorithm?
DESKey lengthSymmetric cryptographyCryptographic algorithms - Question #555Cryptography
The primary purpose for using one-way hashing of user passwords within a password file is which of the following?
Password HashingCryptography BasicsData ProtectionPassword Security - Question #556Cryptography
Which of the following issues is not addressed by digital signatures?
Digital SignaturesCryptographyNonrepudiationDenial-of-Service