FedVTE ISSMP 2024 Practice Exam(solved & updated)
Achieving data privacy is a key goal of most information security programs. Which of the following is NOT a necessary step to achieving data
privacy?
A. Identify, classify, and chart access to sensitive data
B. Define security policy around identified data
C. Decide on new technologies to implement
D. Decide on mode of implementation - answer C. Decide on new technologies to implement
Which consists of the processes and specific actions necessary to prudently protect critical business processes? A. Business Continuity Planning
B. Change Control
C. Disaster Recovery Planning
D. Risk Management Planning - answer A. Business
Continuity Planning
If your organization wants the most efficient restore from backup, which type of backup would you choose?
A. Differential
B. Incremental
C. Full
D. Combined - answer C. Full
Which of the following is NOT something the Board of Directors should do to establish and maintain a senior management climate that supports IS?
A. Establish a level of oversight for the ongoing activities of IS.
B. Wait to evaluate potential IS risks, then create and implement IS policies after developing a comprehensive understanding of the business impact. C. Selecting and/or approving the organizations auditors, reviewing findings and concerns.
D. Establish an ongoing means of visibility into the organization?s IS and risk management status. - answer B. Wait to evaluate potential IS risks, then create and implement IS policies after developing a
comprehensive understanding of the business impact.
A poorly written Interconnection Security Agreement may endanger organizational success by:
A. Describing the security controls that will be used
to protect the systems and data.
B. Omitting a topological drawing of the interconnection; inadvertently granting unknown or
unneeded access to proprietary information.
C. None of the above
D. All of the above - answer Not C
Which of the following is NOT a method of botnet detection?
A. Sniff traffic on common IRC ports
B. OS fingerprinting C. Employ honeypots
D. Employee email monitoring - answer D. Employee email monitoring
Which is more difficult to maintain version control?
A. Physical records management
B. Electronic records management
C. Software records management
D. Web records management - answer not A or D
An in house IS training exercise leads to the reconfiguration of certain boundary systems and new procedures for the IT staff. The ISSMP has effectively implemented which of the following:
A. Risk management
B. Value determination
C. Assurance integration
D. Resource management - answer not C or A
RTO is comprised of following components:
A. Starting from the point of disaster, the time before a disaster is declared, the time to perform tasks to the point of business resumption whereby
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller BRAINBOOSTERS. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $15.49. You're not tied to anything after your purchase.