CISMP-V9試験無料問題集（102題）「BCS Foundation Certificate in Information Security Management Principles V9.0 認定」

出題：1

In software engineering, what does 'Security by Design" mean?

A. All code meets the technical requirements of GDPR.

B. The software has been designed from its inception to be secure.

C. Low Level and High Level Security Designs are restricted in distribution.

D. All security software artefacts are subject to a code-checking regime.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

Which security concept provides redundancy in the event a security control failure or the exploitation of a vulnerability?

A. System Integrity.

B. Intrusion Prevention System.

C. Sandboxing.

D. Defence in depth.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

Which of the following cloud delivery models is NOT intrinsically "trusted" in terms of security by clients using the service?

A. Community

B. Private.

C. Hybrid.

D. Public.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

What aspect of an employee's contract of employment Is designed to prevent the unauthorised release of confidential data to third parties even after an employee has left their employment?

A. Acceptable use policy.

B. Security clearance.

C. Non-disclosure.

D. Segregation of Duties.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Which of the following acronyms covers the real-time analysis of security alerts generated by applications and network hardware?

A. DDoS.

B. CISM.

C. SIEM.

D. CERT

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

When considering outsourcing the processing of data, which two legal "duty of care" considerations SHOULD the original data owner make?
1 Third party is competent to process the data securely.
2. Observes the same high standards as data owner.
3. Processes the data wherever the data can be transferred.
4. Archive the data for long term third party's own usage.

A. 2 and 3.

B. 1 and 4.

C. 1 and 2.

D. 3 and 4.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

Which cryptographic protocol preceded Transport Layer Security (TLS)?

A. Simple Network Management Protocol (SNMP).

B. Hypertext Transfer Protocol Secure (HTTPS)

C. Public Key Infrastructure (PKI).

D. Secure Sockets Layer (SSL).

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

What Is the PRIMARY reason for organisations obtaining outsourced managed security services?

A. Managed security services permit organisations to absolve themselves of responsibility for security.

B. Managed security services are a de facto requirement for certification to core security standards such as ISG/IEC 27001

C. Managed security services provide access to specialist security tools and expertise on a shared, cost-effective basis.

D. Managed security services are a powerful defence against litigation in the event of a security breach or incident

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

What term is used to describe the act of checking out a privileged account password in a manner that bypasses normal access controls procedures during a critical emergency situation?

A. Privileged User Gateway

B. Break Glass

C. Enterprise Security Management

D. Multi Factor Authentication.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

Which types of organisations are likely to be the target of DDoS attacks?

A. Any organisation with an online presence.

B. Online retail based organisations.

C. Cloud service providers.

D. Any financial sector organisations.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

CISMP-V9試験無料問題集「BCS Foundation Certificate in Information Security Management Principles V9.0 認定」