ISC-SSCP

SSCP Which of the following is responsible for MOST of the security issues?

SSCP Which of the following choices describe a condition when RAM and Secondary storage are used together?

SSCP Which of the following statements pertaining to protection rings is false?

SSCP Which of the following is not a component of a Operations Security "triples"?

SSCP Who is responsible for implementing user clearances in computer-based information systems at the B3 level of the TCSEC rating ?

SSCP Who is responsible for initiating corrective measures and capabilities used when there are security violations?

SSCP Which of the following security modes of operation involves the highest risk?

SSCP What can best be defined as the detailed examination and testing of the security features of an IT system or product to ensure that they work correctly and effectively and do not show any logical vulnerabilities, such as evaluation criteria?

SSCP Which of the following should NOT be performed by an operator?

SSCP Which of the following statements pertaining to software testing approaches is correct?

SSCP Which of the following phases of a software development life cycle normally incorporates the security specifications, determines access controls, and evaluates encryption options?

SSCP Which of the following is less likely to be included in the change control sub-phase of the maintenance phase of a software product?

SSCP Which of the following rules is least likely to support the concept of least privilege?

SSCP Which of the following best defines add-on security?

SSCP Whose role is it to assign classification level to information?

SSCP In what way could Java applets pose a security threat?

SSCP Attributable data should be:

SSCP Which of the following usually provides reliable, real-time information without consuming network or host resources?

SSCP The fact that a network-based IDS reviews packets payload and headers enable which of the following?

SSCP Attributes that characterize an attack are stored for reference using which of the following Intrusion Detection System (IDS) ?

SSCP Which of the following is NOT a fundamental component of an alarm in an intrusion detection system?

SSCP Which one of the following statements about the advantages and disadvantages of network-based Intrusion detection systems is true

SSCP The session layer provides a logical persistent connection between peer hosts. Which of the following is one of the modes used in the session layer to establish this connection?

SSCP What is the primary goal of setting up a honeypot?

SSCP Which conceptual approach to intrusion detection system is the most common?

SSCP In order to enable users to perform tasks and duties without having to go through extra steps it is important that the security controls and mechanisms that are in place have a degree of?

SSCP Which of the following recovery plan test results would be most useful to management?

SSCP Within the realm of IT security, which of the following combinations best defines risk?

SSCP Which of the following is NOT a transaction redundancy implementation?

SSCP Another example of Computer Incident Response Team (CIRT) activities is: