CISSP - Question Bank 19

Test your knowledge of CISSP with these multiple choice questions. Each Question Bank includes 20 practice questions that have been designed to measure your knowledge of key ideas.

A key factor to keep in mind is that guessing is better than not answering a question.

Every single question on the CISSP exam is a four-option multiple choice question with a single correct answer. Some are straightforward, such as asking you to select a definition. Some are a bit more involved, such as asking you to select the appropriate concept or best practice. And some questions present you with a scenario or situation and ask you to select the best response.

Start
Q1. Which of the following is the most important aspect of security?

A. Physical security
B. Intrusion detection
C. Logical security
D. Awareness training

View Answer
The Correct Answer is A.
Explanation: Physical security is the most important aspect of overall security. Without physical security, none of the other aspects of security is sufficient.
Q2. What method can be used to map out the needs of an organization for a new facility?

A. Log file audit
B. Critical path analysis
C. Risk analysis
D. Inventory

View Answer
The Correct Answer is B.
Explanation: Critical path analysis can be used to map out the needs of an organization for a new facility. A critical path analysis is the process of identifying relationships between mission-critical applications, processes, and operations and all of the supporting elements.
Q3. What type of physical security controls focus on facility construction and selection, site management, personnel controls, awareness training, and emergency response and procedures?

A. Technical
B. Physical
C. Administrative
D. Logical

View Answer
The Correct Answer is C.
Explanation: Administrative physical security controls include facility construction and selection, site management, personnel controls, awareness training, and emergency response and procedures.
Q4. Which of the following is not a security-focused design element of a facility or site?

A. Separation of work and visitor areas
B. Restricted access to areas with higher value or importance
C. Confidential assets located in the heart or center of a facility
D. Equal access to all locations within a facility

View Answer
The Correct Answer is D.
Explanation: Equal access to all locations within a facility is not a security-focused design element. Each area containing assets or resources of different importance, value, and confidentiality should have a corresponding level of security restriction placed on it.
Q5. Which of the following does not need to be true in order to maintain the most efficient and secure server room?

A. It must be human compatible.
B. It must include the use of non-water fire suppressants.
C. The humidity must be kept between 40 and 60 percent.
D. The temperature must be kept between 60 and 75 degrees Fahrenheit.

View Answer
The Correct Answer is A.
Explanation: A computer room does not need to be human compatible to be efficient and secure. Having a human-incompatible server room provides a greater level of protection against attacks.
Q6. What is a perimeter-defining device used to deter casual trespassing?

A. Gates
B. Fencing
C. Security guards
D. Motion detectors

View Answer
The Correct Answer is B.
Explanation: Fencing is a perimeter-defining device used to deter casual trespassing. Gates, security guards, and motion detectors do not define a facility's perimeter.
Q7. Which of the following is a double set of doors that is often protected by a guard and is used to contain a subject until their identity and authentication is verified?

A. Gate
B. Turnstile
C. Mantrap
D. Proximity detector

View Answer
The Correct Answer is C.
Explanation: A mantrap is a double set of doors that is often protected by a guard and used to contain a subject until their identity and authentication is verified.
Q8. What is the most common form of perimeter security devices or mechanisms?

A. Security guards
B. Fences
C. CCTV
D. Lighting

View Answer
The Correct Answer is D.
Explanation: Lighting is the most common form of perimeter security devices or mechanisms. Your entire site should be clearly lit. This provides for easy identification of personnel and makes it easier to notice intrusions.
Q9. Which of the following is not a disadvantage of using security guards?

A. Security guards are usually unaware of the scope of the operations within a facility.
B. Not all environments and facilities support security guards.
C. Not all security guards are themselves reliable.
D. Prescreening, bonding, and training does not guarantee effective and reliable security guards.

View Answer
The Correct Answer is A.
Explanation: Security guards are usually unaware of the scope of the operations within a facility, which supports confidentiality and helps reduce the possibility that a security guard will be involved in disclosure of confidential information.
Q10. What is the most common cause of failure for a water-based fire suppression system?

A. Water shortage
B. People
C. Ionization detectors
D. Placement of detectors in drop ceilings

View Answer
The Correct Answer is B.
Explanation: The most common cause of failure for a water-based system is human error. If you turn off the water source after a fire and forget to turn it back on, you'll be in trouble for the future. Also, pulling an alarm when there is no fire will trigger damaging water release throughout the office.
Q11. What is the most common and inexpensive form of physical access control device?

A. Lighting
B. Security guard
C. Key locks
D. Fences

View Answer
The Correct Answer is C.
Explanation: Key locks are the most common and inexpensive form of physical access control device. Lighting, security guards, and fences are all much more cost intensive.
Q12. What type of motion detector senses changes in the electrical or magnetic field surrounding a monitored object?

A. Wave
B. Photoelectric
C. Heat
D. Capacitance

View Answer
The Correct Answer is D.
Explanation: A capacitance motion detector senses changes in the electrical or magnetic field surrounding a monitored object.
Q13. Which of the following is not a typical type of alarm that can be triggered for physical security?

A. Preventative
B. Deterrent
C. Repellant
D. Notification

View Answer
The Correct Answer is A.
Explanation: There is no preventative alarm. Alarms are always triggered in response to a detected intrusion or attack.
Q14. No matter what form of physical access control is used, a security guard or other monitoring system must be deployed to prevent all but which of the following?

A. Piggybacking
B. Espionage
C. Masquerading
D. Abuse

View Answer
The Correct Answer is B.
Explanation: No matter what form of physical access control is used, a security guard or other monitoring system must be deployed to prevent abuse, masquerading, and piggybacking. Espionage cannot be prevented by physical access controls.
Q15. What is the most important goal of all security solutions?

A. Prevention of disclosure
B. Maintaining integrity
C. Human safety
D. Sustaining availability

View Answer
The Correct Answer is C.
Explanation: Human safety is the most important goal of all security solutions.
Q16. What is the ideal humidity range for a computer room?

A. 20-40 percent
B. 40-60 percent
C. 60-75 percent
D. 80-95 percent

View Answer
The Correct Answer is B.
Explanation: The humidity in a computer room should ideally be from 40 to 60 percent.
Q17. At what voltage level can static electricity cause destruction of data stored on hard drives?

A. 4,000
B. 17,000
C. 40
D. 1,500

View Answer
The Correct Answer is D.
Explanation: Destruction of data stored on hard drives can be caused by 1,500 volts of static electricity.
Q18. A Type B fire extinguisher may use all but which of the following suppression mediums?

A. Water
B. CO2
C. Halon
D. Soda acid

View Answer
The Correct Answer is A.
Explanation: Water is never the suppression medium in Type B fire extinguishers because they are used on liquid fires.
Q19. What is the best type of water-based fire suppression system for a computer facility?

A. Wet pipe system
B. Dry pipe system
C. Preaction system
D. Deluge system

View Answer
The Correct Answer is C.
Explanation: A preaction system is the best type of water-based fire suppression system for a computer facility.
Q20. Which of the following is typically not a culprit in causing damage to computer equipment in the event of a fire and a triggered suppression?

A. Heat
B. Suppression medium
C. Smoke
D. Light

View Answer
The Correct Answer is D.
Explanation: Light is usually not damaging to most computer equipment, but fire, smoke, and the suppression medium (typically water) are very destructive.
Copyright © 2018 | All Rights Reserved | Designed & Developed by Yeahhub.com