isc2 sample questions

To identify the Assess and mitigate risks

Module 1: Understand the Security Concepts of Information Assurance

Module 2: Understand the Risk Management Process

Module 3: Understand Security Controls

Module 5: Understand ISC2 Code of Ethics

Module 1: Understand Incident Response

Module 2: Understand Business Continuity

Module 3: Understand Disaster Recovery

To restrict access to computer systems and networks

To secure physical locations and assets

To encrypt data transmissions

To prevent malware infections

Confidentiality

Integrity

Availability

Reliability

Implement risk mitigation strategies.

Identify and assess risks

Monitor and review risks.

Develop risk acceptance criteria.

Preventive control

Detective control

Corrective control

Recovery control

To define network architecture.

To outline ethical guidelines for employees.

To establish clear expectations for security practices.

To specify incident response procedures.

Inform the public immediately.

Ignore the vulnerability if it doesn't affect their own systems.

Report the vulnerability to the client responsibly.

Exploit the vulnerability for personal gain.

Data backup and restoration procedures

Communication protocols

Employee training and testing

Marketing strategies