Exam (elaborations)

CISSP Exam questions with answers

Rating

Sold

Pages

Grade

A+

Uploaded on

13-07-2025

Written in

2024/2025

CISSP Exam questions with answers

Institution

ISC2 CISSP

Course

ISC2 CISSP

Content preview

CISSP Exam questions with answers \| \| \| \|

CIA Triangle - CORRECT ANSWERS ✔✔Cornerstone of infosec.
\| \| \| \| \| \| \| \|

Confidentiality, Integrity, Availability \| \|

Confidentiality (CIA Triangle) - CORRECT ANSWERS ✔✔prevention \| \| \| \| \| \| \|

of unauthorized disclosure of information; prevention of
\| \| \| \| \| \| \|

unauthorized read access to data \| \| \| \|

Integrity (CIA Triangle) - CORRECT ANSWERS ✔✔prevention of
\| \| \| \| \| \| \| \|

unauthorized modification of data; prevention of unauthorized
\| \| \| \| \| \| \|

write access to data
\| \| \|

Availability (CIA Triangle) - CORRECT ANSWERS ✔✔ensures data
\| \| \| \| \| \| \| \|

is available when needed to authorized users
\| \| \| \| \| \|

Opposing forces to CIA - CORRECT ANSWERS ✔✔DAD: disclosure,
\| \| \| \| \| \| \| \| \|

alteration, destruction \|

identification - CORRECT ANSWERS ✔✔the process by which a \| \| \| \| \| \| \| \| \|

subject professes an identity and accountability is initiated; ex:
\| \| \| \| \| \| \| \| \|

typing a username, swiping a smart card, waving a proximity
\| \| \| \| \| \| \| \| \| \|

device (badging in), speaking a phrase, etc - always a two step
\| \| \| \| \| \| \| \| \| \| \| \|

process with authenticating
\| \|

,authentication - CORRECT ANSWERS ✔✔verification that a \| \| \| \| \| \| \|

person is who they say they are; ex: entering a password or PIN,
\| \| \| \| \| \| \| \| \| \| \| \| \|

biometrics, etc - always a two step process with identifying
\| \| \| \| \| \| \| \| \|

authorization - CORRECT ANSWERS ✔✔verification of a person's \| \| \| \| \| \| \| \|

access or privileges to applicable data
\| \| \| \| \|

auditing (monitoring) - CORRECT ANSWERS ✔✔recording a log of
\| \| \| \| \| \| \| \| \|

the events and activities related to the system and subjects
\| \| \| \| \| \| \| \| \|

accounting (accountability) - CORRECT ANSWERS ✔✔reviewing
\| \| \| \| \| \|

log files to check for compliance and violations in order to hold
\| \| \| \| \| \| \| \| \| \| \| \|

subjects accountable for their actions
\| \| \| \|

non-repudiation - CORRECT ANSWERS ✔✔a user cannot deny \| \| \| \| \| \| \| \|

having performed a specific action
\| \| \| \|

subject - CORRECT ANSWERS ✔✔an entity that performs active
\| \| \| \| \| \| \| \| \|

functions to a system; usually a person, but can also be script or
\| \| \| \| \| \| \| \| \| \| \| \| \|

program designed to perform actions on data
\| \| \| \| \| \|

object - CORRECT ANSWERS ✔✔any passive data within the
\| \| \| \| \| \| \| \| \|

system

ISC2 Code of Ethics Canons (4) - CORRECT ANSWERS ✔✔1.
\| \| \| \| \| \| \| \| \| \|

protect society, commonwealth, infrastructure
\| \| \|

2. act honorably, justly, responsibly, legally
\| \| \| \| \|

,3. provide diligent and competent service
\| \| \| \| \|

4. advance and protect the profession
\| \| \| \| \|

strictly applied in order; exam questions in which multiple
\| \| \| \| \| \| \| \| \|

canons could be the answer, choose the highest priority per this
\| \| \| \| \| \| \| \| \| \| \|

order

policy - CORRECT ANSWERS ✔✔mandatory high level
\| \| \| \| \| \| \|

management directives; components of policy \| \| \| \|

1. purpose: describes the need for policy
\| \| \| \| \| \|

2. scope: what systems, people, facilities, organizations are
\| \| \| \| \| \| \| \|

covered
3. responsibilities: specific duties of involved parties
\| \| \| \| \| \|

4. compliance: effectiveness of policy, violations of policy
\| \| \| \| \| \| \|

procedure - CORRECT ANSWERS ✔✔low level step by step guide
\| \| \| \| \| \| \| \| \| \|

for accomplishing a task
\| \| \|

standard - CORRECT ANSWERS ✔✔describes the specific use of
\| \| \| \| \| \| \| \| \|

technology applied to hardware or software; mandatory
\| \| \| \| \| \|

guideline - CORRECT ANSWERS ✔✔discretionary
\| \| \| \| \|

recommendations (e.g. not mandatory) \| \| \|

baseline - CORRECT ANSWERS ✔✔a uniform way of
\| \| \| \| \| \| \| \|

implementing a standard \| \|

, 3 access/security control categories - CORRECT ANSWERS ✔✔1.
\| \| \| \| \| \| \| \|

administrative: implemented by creating org policy, procedure, \| \| \| \| \| \| \|

regulation. user awareness/training also fall here
\| \| \| \| \|

2. technical: implemented using hardware, software, firmware
\| \| \| \| \| \| \|

that restricts logical access to a system
\| \| \| \| \| \|

3. physical: locks, fences, walls, etc
\| \| \| \| \|

preventive access control \| \|

(can be administrative, technical, physical) - CORRECT ANSWERS
\| \| \| \| \| \| \| \|

✔✔prevents actions from occurring by applying restrictions on
\| \| \| \| \| \| \| \|

what a user can do. example: privilege level
\| \| \| \| \| \| \|

detective access control \| \|

(can be administrative, technical, physical) - CORRECT ANSWERS
\| \| \| \| \| \| \| \|

✔✔controls that alert during or after a successful attack; alarm
\| \| \| \| \| \| \| \| \| \|

systems, or closed circuit tv \| \| \| \|

corrective access control \| \|

(can be administrative, technical, physical) - CORRECT ANSWERS
\| \| \| \| \| \| \| \|

✔✔repairing a damaged system; often works hand in hand with
\| \| \| \| \| \| \| \| \| \|

detective controls (e.g. antivirus software)
\| \| \| \|

recovery access control \| \|

(can be administrative, technical, physical) - CORRECT ANSWERS
\| \| \| \| \| \| \| \|

✔✔controls to restore a system after an incident has occurred;
\| \| \| \| \| \| \| \| \|

Report Copyright Violation

Written for

Institution: ISC2 CISSP
Course: ISC2 CISSP

Document information

Uploaded on: July 13, 2025
Number of pages: 48
Written in: 2024/2025
Type: Exam (elaborations)
Contains: Questions & answers

Subjects

cissp exam questions with answers

$21.99

Get access to the full document:

Written by students who passed

Immediately available after payment

Read online or as PDF

Get to know the seller

EXAMSTUDYPLUG

4.5

(239)

Get to know the seller

EXAMSTUDYPLUG Stanford University

View profile

Sold

365

Member since

3 year

Number of followers

107

Documents

20575

Last sold

1 hour ago

GRADE BUDDY

Welcome to My Page! Are you looking for high-quality study resources to ace your exams or better understand your coursework? You've come to the right place! I'm passionate about sharing my knowledge and helping students succeed academically. Here, you'll find a wide range of well-organized notes, study guides, and helpful materials across various subjects, including Maths ,nursig, Biology, History, etc.. Each resource is carefully crafted with detailed explanations, clear examples, and relevant key points to help simplify complex concepts. Whether you're preparing for a test, reviewing lectures, or need extra support, my resources are designed to make your learning experience smoother and more effective. Let me be a part of your academic journey, and feel free to reach out if you have any questions or need personalized assistance!

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller EXAMSTUDYPLUG. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $21.99. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews) 50322 documents were sold in the last 30 days Founded in 2010, the go-to place to buy study notes for 16 years now

CISSP Exam questions with answers

Content preview

Written for

Document information

Subjects

Get to know the seller

Recently viewed by you

Why students choose Stuvia

Created by fellow students, verified by reviews

Didn't get what you expected? Choose another document

Pay as you like, start learning right away

Working on your references?

Frequently asked questions

What do I get when I buy this document?

Satisfaction guarantee: how does it work?

Who am I buying these notes from?

Will I be stuck with a subscription?

Can Stuvia be trusted?