CISSP Domain 2 (Asset Security)

Brenda is an information security architect at a financial institution. She wants to ensure that the transactions are secure as they traverse the network. She recommends the use of TLS. What threat is she attempting to stop and what method is she using to prevent it?

Doreen’s company is operating a hybrid cloud environment. There are on prem (on site) and cloud based systems. She is doing monitoring on prem (on site). As the number of cloud users are growing, she needs to apply security policies. What type of tool is best suited for this purpose?

When media is labelled based on the classification of the data it contains, what rule is typically applied regarding labels?

Which one of the following administrative processes assists organizations in assigning appropriate levels of security control to sensitive information?

How can a data retention policy helps to reduce liability?

Staff in an IT department who are delegated responsibility for day to day tasks hold what data role?

Neal is tasked with identifying security controls for systems covered by his organization’s information classification system. Why might Neal choose to use a security baseline?

Joey wants to prepare media for re-use in an environment operating at the same level of sensitivity. Which of the following is best suited for her needs?

What issue is common to spare sectors and bad sectors on hard drives as well as over provisioned space on modern SSDs?

What term best describes data that is resident in system memory?