CISSP-ISSEP Free Practice Test

Diane is the project manager of the HGF Project. A risk that has been identified and analyzed in the project planning processes is now coming into fruition. What individual should respond to the risk with the preplanned risk response

1. A. Project sponsor
2. B. Risk owner
3. C. Diane
4. D. Subject matter expert

Correct Answer: B

Which of the following acts is endorsed to provide a clear statement of the proscribed activity concerning computers to the law enforcement community, those who own and operate computers, and those tempted to commit crimes by unauthorized access to
computers

1. A. Computer Fraud and Abuse Act
2. B. Government Information Security Reform Act (GISRA)
3. C. Computer Security Act
4. D. Federal Information Security Management Act (FISMA)

Correct Answer: A

Which of the following approaches can be used to build a security program Each correct answer represents a complete solution. Choose all that apply.

1. A. Right-Up Approach
2. B. Left-Up Approach
3. C. Bottom-Up Approach
4. D. Top-Down Approach

Correct Answer: CD

Which of the following certification levels requires the completion of the minimum security checklist and more in-depth, independent analysis

1. A. CL 3
2. B. CL 4
3. C. CL 2
4. D. CL 1

Correct Answer: A

The Phase 4 of DITSCAP C&A is known as Post Accreditation. This phase starts after the system has been accredited in Phase 3. What are the process activities of this phase Each correct answer represents a complete solution. Choose all that apply.

1. A. Security operations
2. B. Continue to review and refine the SSAA
3. C. Change management
4. D. Compliance validation
5. E. System operations
6. F. Maintenance of the SSAA

Correct Answer: ACDEF