Which of the following is not a type of monitoring device?
Which of the following is considered a threat rather than a risk?
Which of the following is an asymmetric encryption algorithm?
Which of the following serves as an authentication server (AS) and a ticket- granting server (TGS)?
Which of the following is not a privacy principle of the Organization for Economic Cooperation and Development (OECD)?
When defining an audit plan for IT security, what is the first step that must be done?
“Which one of the following measures the average amount of time that it takes to repair a system, application, or component?”
Which of the following is not a method for maintaining the security of a substitution cipher?
What does GIAC stand for?
Which of the following is a vendor-specific certification?
Which of the following helps keep critical business processes running during a disaster?
Identify the OSI reference model layer that handles end-to-end communication maintenance.
Which type of virus targets computer hardware and software startup functions?
Beth must purchase firewalls for several network circuits used by her organization. Which one circuit will have the highest possible network throughput?
Your company is planning to produce a new consumer electronics device. Which of the following is the best source of information to ensure your device meets safety and performance standards?
Juan’s web server was down for an entire day last September. It experienced no other downtime during that month. Which one of the following represents the web server uptime for that month?
Regarding access control policy management, which of the following is not considered a central element of access?
Which of the following is usually associated with a phishing Web site?
Which of the following is not a primary type of authentication?
Which organization’s certifications focus on a Common Body of Knowledge (CBK)?
Which of the following seeks to eliminate human latency in the decision-making process?
Under GLBA, what is nonpublic personal information (NPI)?
Which of the following is a type of authentication?
Which type of attack involves capturing data packets from a network and retransmitting them to produce an unauthorized effect?
Session Initiation Protocol (SIP) supports which of the following?
Which law does not require securing private information, but it does require security controls to protect the confidentiality and integrity of the reporting itself?
What is a common reason for not completely eliminating a risk?
Entities that receive federal funding from the E-Rate program must abide by which law?
When conducting a business impact analysis on critical business functions, the amount of data loss that is acceptable is called .
Which of the following is generally not an objective of cryptanalysis?
Which of the following is not true of security certifications?
The key to protecting assets from the risk of attack is to eliminate or address as many as possible.
What is typically the first step in a risk management process?
Which of the following is an action that could damage an asset?
What is a characteristic of analog communications?
Which of the following is a TCP/IP protocol that provides a computer with an IP address, subnet mask, and other essential communication information?
What is a potential drawback to using a smart card as a method of authentication?
Which of the following is typically not a drawback to VoIP and SIP applications?
Schools and libraries that must conform to CIPA requirements must implement a technology protection measure (TPM). What does TPM do?
Which of the following uses mathematical formulas and numbers to rank risk
Which of the following is not a type of penetration test?
Two users must pass short, quick messages to one another during conference calls. Which of the following unified communications components is best suited for this task?
“Matthew captures traffic on his network and notices connections using ports 20, 22, 23, and 80. Which port normally hosts a protocol that uses secure, encrypted connections?”
Which domain of a typical IT infrastructure includes cabling, servers, and wireless access points?
Which of the following laws requires high-level officers to personally verify and attest to the accuracy of financial data?
Regarding a disaster recovery plan, which of the following is the least expensive to set up?
Wen creating a business impact analysis (BIA), it is your job as a security
Organizations that require customer-service representatives to access private customer data can best protect customer privacy and make it easy to access other consumer data by using what two security tools?
The is active in developing standards that support safety, performance, environmental responsibility, energy efficiency, and renewable energy sources.
What (ISC)2 certification specifically addresses developing secure software?