CISMP-V9試験無料問題集（102題）「BCS Foundation Certificate in Information Security Management Principles V9.0 認定」

出題：1

Ensuring the correctness of data inputted to a system is an example of which facet of information security?

A. Authenticity.

B. Integrity.

C. Availability.

D. Confidentiality.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

Which term describes the acknowledgement and acceptance of ownership of actions, decisions, policies and deliverables?

A. Credibility.

B. Accountability.

C. Responsibility.

D. Confidentiality.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

What term is used to describe the act of checking out a privileged account password in a manner that bypasses normal access controls procedures during a critical emergency situation?

A. Privileged User Gateway

B. Break Glass

C. Enterprise Security Management

D. Multi Factor Authentication.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

What Is the first yet MOST simple and important action to take when setting up a new web server?

A. Change default system passwords.

B. Patch the OS to the latest version

C. Fully encrypt the hard disk.

D. Apply hardening to all applications.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Which of the following is often the final stage in the information management lifecycle?

A. Creation.

B. Use.

C. Publication.

D. Disposal.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

What form of training SHOULD developers be undertaking to understand the security of the code they have written and how it can improve security defence whilst being attacked?

A. Blue Team Training.

B. Black Hat Training.

C. Red Team Training.

D. Awareness Training.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

What type of attack attempts to exploit the trust relationship between a user client based browser and server based websites forcing the submission of an authenticated request to a third party site?

A. SQL Injection.

B. CSRF.

C. Parameter Tampering

D. XSS.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

Which standards framework offers a set of IT Service Management best practices to assist organisations in aligning IT service delivery with business goals - including security goals?

A. ITIL.

B. COBIT

C. ISAGA.

D. SABSA.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

Which security concept provides redundancy in the event a security control failure or the exploitation of a vulnerability?

A. System Integrity.

B. Intrusion Prevention System.

C. Sandboxing.

D. Defence in depth.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

When an organisation decides to operate on the public cloud, what does it lose?

A. Physical access to the servers hosting its information.

B. The right to audit and monitor access to its information.

C. Control over Intellectual Property Rights relating to its applications.

D. The ability to determine in which geographies the information is stored.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

CISMP-V9試験無料問題集「BCS Foundation Certificate in Information Security Management Principles V9.0 認定」