ISC2 Certified In Cybersecurity (CC)
Exam Questions And Correct Answers
(Verified Answers) Plus Rationales 2026
Q&A | Instant Download Pdf
Question 1
What is the primary goal of information security?
A. Increase system performance
B. Ensure confidentiality, integrity, and availability
C. Maximize data storage capacity
D. Improve user experience
Answer: B. Ensure confidentiality, integrity, and availability
Rationale: The core objective of information security is the CIA triad:
confidentiality (protecting data from unauthorized access), integrity (ensuring
data accuracy and completeness), and availability (ensuring systems and data
are accessible when needed). The other options relate to system optimization or
usability, which are not primary security goals.
Question 2
Which type of malware replicates itself without user intervention?
A. Trojan horse
B. Worm
C. Spyware
D. Adware
Answer: B. Worm
Rationale: A worm is self-replicating malware that spreads across networks
,without user action. Unlike trojans, it does not need to be disguised, and unlike
spyware or adware, its main purpose is propagation and often disruption.
Question 3
What is the purpose of a firewall?
A. Encrypt data at rest
B. Monitor and control incoming and outgoing network traffic
C. Store backup copies of data
D. Detect physical intrusions
Answer: B. Monitor and control incoming and outgoing network traffic
Rationale: A firewall enforces security policies by filtering network traffic based
on rules. It does not encrypt data, store backups, or handle physical security.
Question 4
Which principle ensures users are only given the minimum access necessary?
A. Least privilege
B. Defense in depth
C. Separation of duties
D. Fail-secure design
Answer: A. Least privilege
Rationale: Least privilege restricts user permissions to only what is necessary for
their role, reducing attack surface and limiting damage from compromised
accounts.
Question 5
What does phishing primarily attempt to do?
,A. Install hardware drivers
B. Trick users into revealing sensitive information
C. Encrypt files for ransom
D. Scan network ports
Answer: B. Trick users into revealing sensitive information
Rationale: Phishing is a social engineering attack designed to deceive users into
providing credentials or sensitive data, often through fake emails or websites.
Question 6
Which of the following is an example of multi-factor authentication?
A. Password only
B. PIN and password
C. Password and fingerprint
D. Username and password
Answer: C. Password and fingerprint
Rationale: MFA requires two or more different authentication factors such as
something you know (password) and something you are (biometric fingerprint).
Question 7
What is the function of encryption?
A. Delete malicious files
B. Convert data into unreadable format without a key
C. Monitor system logs
D. Increase bandwidth
Answer: B. Convert data into unreadable format without a key
Rationale: Encryption protects data by transforming it into ciphertext that can
only be read with the correct decryption key.
, Question 8
Which attack involves overwhelming a system with traffic?
A. SQL injection
B. Denial of Service (DoS)
C. Brute force
D. Phishing
Answer: B. Denial of Service (DoS)
Rationale: DoS attacks flood a system with excessive traffic, making it
unavailable to legitimate users.
Question 9
What is the main purpose of a vulnerability assessment?
A. Exploit system weaknesses
B. Identify security weaknesses in systems
C. Encrypt network traffic
D. Block unauthorized users
Answer: B. Identify security weaknesses in systems
Rationale: A vulnerability assessment identifies, quantifies, and prioritizes
security weaknesses to help organizations mitigate risks.
Question 10
Which device separates networks and filters traffic based on rules?
A. Router
B. Switch
C. Firewall
D. Hub
Exam Questions And Correct Answers
(Verified Answers) Plus Rationales 2026
Q&A | Instant Download Pdf
Question 1
What is the primary goal of information security?
A. Increase system performance
B. Ensure confidentiality, integrity, and availability
C. Maximize data storage capacity
D. Improve user experience
Answer: B. Ensure confidentiality, integrity, and availability
Rationale: The core objective of information security is the CIA triad:
confidentiality (protecting data from unauthorized access), integrity (ensuring
data accuracy and completeness), and availability (ensuring systems and data
are accessible when needed). The other options relate to system optimization or
usability, which are not primary security goals.
Question 2
Which type of malware replicates itself without user intervention?
A. Trojan horse
B. Worm
C. Spyware
D. Adware
Answer: B. Worm
Rationale: A worm is self-replicating malware that spreads across networks
,without user action. Unlike trojans, it does not need to be disguised, and unlike
spyware or adware, its main purpose is propagation and often disruption.
Question 3
What is the purpose of a firewall?
A. Encrypt data at rest
B. Monitor and control incoming and outgoing network traffic
C. Store backup copies of data
D. Detect physical intrusions
Answer: B. Monitor and control incoming and outgoing network traffic
Rationale: A firewall enforces security policies by filtering network traffic based
on rules. It does not encrypt data, store backups, or handle physical security.
Question 4
Which principle ensures users are only given the minimum access necessary?
A. Least privilege
B. Defense in depth
C. Separation of duties
D. Fail-secure design
Answer: A. Least privilege
Rationale: Least privilege restricts user permissions to only what is necessary for
their role, reducing attack surface and limiting damage from compromised
accounts.
Question 5
What does phishing primarily attempt to do?
,A. Install hardware drivers
B. Trick users into revealing sensitive information
C. Encrypt files for ransom
D. Scan network ports
Answer: B. Trick users into revealing sensitive information
Rationale: Phishing is a social engineering attack designed to deceive users into
providing credentials or sensitive data, often through fake emails or websites.
Question 6
Which of the following is an example of multi-factor authentication?
A. Password only
B. PIN and password
C. Password and fingerprint
D. Username and password
Answer: C. Password and fingerprint
Rationale: MFA requires two or more different authentication factors such as
something you know (password) and something you are (biometric fingerprint).
Question 7
What is the function of encryption?
A. Delete malicious files
B. Convert data into unreadable format without a key
C. Monitor system logs
D. Increase bandwidth
Answer: B. Convert data into unreadable format without a key
Rationale: Encryption protects data by transforming it into ciphertext that can
only be read with the correct decryption key.
, Question 8
Which attack involves overwhelming a system with traffic?
A. SQL injection
B. Denial of Service (DoS)
C. Brute force
D. Phishing
Answer: B. Denial of Service (DoS)
Rationale: DoS attacks flood a system with excessive traffic, making it
unavailable to legitimate users.
Question 9
What is the main purpose of a vulnerability assessment?
A. Exploit system weaknesses
B. Identify security weaknesses in systems
C. Encrypt network traffic
D. Block unauthorized users
Answer: B. Identify security weaknesses in systems
Rationale: A vulnerability assessment identifies, quantifies, and prioritizes
security weaknesses to help organizations mitigate risks.
Question 10
Which device separates networks and filters traffic based on rules?
A. Router
B. Switch
C. Firewall
D. Hub
