CISSP EXAM WITH CORRECT 150+ (ACTUAL
EXAM) QUESTIONS AND CORRECTLY WELL
DEFINED ANSWERS LATEST 2024 ALREADY
GRADED A+
market approach (for calculating intangible assets) - ANSWERS-
assumes the fair value of an asset reflects the price which
comparable assets have been purchased in transactions under
similar circumstances
income approach (for calculating intangible assets) - ANSWERS-
the value of an asset is the present value of the future earning
capacity that an asset will generate over the rest of its lifecycle
Integrity (CIA Triangle) - ANSWERS-prevention of unauthorized
modification of data; prevention of unauthorized write access
to data
,CIA Triangle - ANSWERS-Cornerstone of infosec. Confidentiality,
Integrity, Availability
Confidentiality (CIA Triangle) - ANSWERS-prevention of
unauthorized disclosure of information; prevention of
unauthorized read access to data
Availability (CIA Triangle) - ANSWERS-ensures data is available
when needed to authorized users
Opposing forces to CIA - ANSWERS-DAD: disclosure, alteration,
destruction
identification - ANSWERS-the process by which a subject
professes an identity and accountability is initiated; ex: typing a
username, swiping a smart card, waving a proximity device
(badging in), speaking a phrase, etc - always a two step process
with authenticating
,authentication - ANSWERS-verification that a person is who
they say they are; ex: entering a password or PIN, biometrics,
etc - always a two step process with identifying
authorization - ANSWERS-verification of a person's access or
privileges to applicable data
auditing (monitoring) - ANSWERS-recording a log of the events
and activities related to the system and subjects
accounting (accountability) - ANSWERS-reviewing log files to
check for compliance and violations in order to hold subjects
accountable for their actions
non-repudiation - ANSWERS-a user cannot deny having
performed a specific action
subject - ANSWERS-an entity that performs active functions to a
system; usually a person, but can also be script or program
designed to perform actions on data
, object - ANSWERS-any passive data within the system
ISC2 Code of Ethics Canons (4) - ANSWERS-1. protect society,
commonwealth, infrastructure
2. act honorably, justly, responsibly, legally
3. provide diligent and competent service
4. advance and protect the profession
strictly applied in order; exam questions in which multiple
canons could be the answer, choose the highest priority per
this order
policy - ANSWERS-mandatory high level management
directives; components of policy
1. purpose: describes the need for policy
2. scope: what systems, people, facilities, organizations are
covered
3. responsibilities: specific duties of involved parties
4. compliance: effectiveness of policy, violations of policy
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller NurseLNJ. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $12.99. You're not tied to anything after your purchase.
