What important function do senior managers normally fill on a business continuity planning team?

Arbitrating disputes about criticality

Evaluating the legal environment

You are completing your business continuity planning effort and have decided that you want to accept one of the risks. What should you do next?

Design a disaster recovery plan.

Implement new security controls to reduce the risk level.

Repeat the business impact assessment.

Document your decision-making process.

Francine is a security specialist for an online service provider in the United States. She recently received a claim from a copyright holder that a user is storing information on her service that violates the third party’s copyright. What law governs the actions that Francine must take?

Digital Millennium Copyright Act

Chris is advising travelers from his organization who will be visiting many different countries overseas. He is concerned about compliance with export control laws. Which of the following technologies is most likely to trigger these regulations?

Office productivity applications

When developing a business impact analysis, the team should first create a list of assets. What should happen next?

Identify vulnerabilities in each asset.

Determine the risks facing the asset.

Develop a value for each asset.

Identify threats facing each asset.

Henry recently assisted one of his co-workers in preparing for the CISSP exam. During this process, Henry disclosed confidential information about the content of the exam, in violation of Canon IV of the Code of Ethics: “Advance and protect the profession.” Who may bring ethics charges against Henry for this violation?

Any certified or licensed professional may bring charges.

Only Henry’s employer may bring charges.

Only the affected employee may bring charges.

Which one of the following issues is not normally addressed in a service-level agreement (SLA)?

Confidentiality of customer information

Frances is reviewing her organization’s business continuity plan documentation for completeness. Which one of the following is not normally included in business continuity plan documentation?

Statement of organizational responsibility

Tony is developing a business continuity plan and is having difficulty prioritizing resources because of the difficulty of combining information about tangible and intangible assets. What would be the most effective risk assessment approach for him to use?

Combination of quantitative and qualitative risk assessment

Neither quantitative nor qualitative risk assessment

CISSP Security and Risk Management Quiz

Authored by skyronight 420

Computers

Professional Development

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

90 questions

Show all answers

OPEN ENDED QUESTION

3 mins • 1 pt

You are completing a review of the controls used to protect a media storage facility in your organization and would like to properly categorize each control that is currently in place. Which of the following control categories accurately describe a fence around a facility? (Select all that apply.)

Evaluate responses using AI:

OFF

OPEN ENDED QUESTION

3 mins • 1 pt

Laura has been asked to perform an SCA. What type of organization is she most likely in?

Evaluate responses using AI:

OFF

OPEN ENDED QUESTION

3 mins • 1 pt

Mary is helping a computer user who sees the following message appear on his computer screen. What type of attack has occurred?

Evaluate responses using AI:

OFF

OPEN ENDED QUESTION

3 mins • 1 pt

Which one of the following organizations would not be automatically subject to the privacy and security requirements of HIPAA if they engage in electronic transactions?

Evaluate responses using AI:

OFF

OPEN ENDED QUESTION

3 mins • 1 pt

Renee is designing the long-term security plan for her organization and has a three- to five-year planning horizon. H

Evaluate responses using AI:

OFF

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Ryan is a CISSP-certified cybersecurity professional working in a nonprofit organization. Which of the following ethical obligations apply to his work? (Select all that apply.)

(ISC)2 Code of Ethics

Organizational code of ethics

Federal code of ethics

RFC 1087

OPEN ENDED QUESTION

3 mins • 1 pt

Alan is performing threat modeling and decides that it would be useful to decompose the system into the core elements shown here. What tool is he using?

Evaluate responses using AI:

OFF

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

85 questions

Test STEM English IT

Quiz

•

1st Grade - Professio...

91 questions

MOC II 0 VII IV IV

Quiz

•

Professional Development

88 questions

COMPTIA IT 12

Quiz

•

Professional Development

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

22 questions

School Wide Vocab Group 1 Master

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

12 questions

What makes Nebraska's government unique?

Quiz

•

4th - 5th Grade

Discover more resources for Computers

16 questions

Parallel, Perpendicular, and Intersecting Lines

Quiz

•

KG - Professional Dev...

20 questions

NCAA Logo Quiz

Quiz

•

Professional Development

20 questions

Easter trivia

Quiz

•

12th Grade - Professi...

CISSP Security and Risk Management Quiz

You are completing a review of the controls used to protect a media storage facility in your organization and would like to properly categorize each control that is currently in place. Which of the following control categories accurately describe a fence around a facility? (Select all that apply.)

Laura has been asked to perform an SCA. What type of organization is she most likely in?

Mary is helping a computer user who sees the following message appear on his computer screen. What type of attack has occurred?

Which one of the following organizations would not be automatically subject to the privacy and security requirements of HIPAA if they engage in electronic transactions?

Renee is designing the long-term security plan for her organization and has a three- to five-year planning horizon. H

Ryan is a CISSP-certified cybersecurity professional working in a nonprofit organization. Which of the following ethical obligations apply to his work? (Select all that apply.)

Alan is performing threat modeling and decides that it would be useful to decompose the system into the core elements shown here. What tool is he using?

What important function do senior managers normally fill on a business continuity planning team?

Florian receives a flyer from a U.S. federal government agency announcing that a new administrative law will affect his business operations. Where should he go to find the text of the law?

You are completing your business continuity planning effort and have decided that you want to accept one of the risks. What should you do next?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers