Certified Information Systems Security Professional (CISSP) Free Practice Exam Questions

482 real Certified Information Systems Security Professional (CISSP) exam questions with answers and AI explanations. (ISC)² certification prep — page 11 of 49.

  1. Question 102: A firm within the defense industry has been directed to comply with contractual requirements for encryption of a government client's Controlled Unclassified In…
  2. Question 103: An organization is implementing data encryption using symmetric ciphers and the Chief Information Officer (CIO) is concerned about the risk of using one key to…
  3. Question 104: Which of the following is the FIRST requirement a data owner should consider before implementing a data retention policy?
  4. Question 105: A corporation does not have a formal data destruction policy. During which phase of a criminal legal proceeding will this have the MOST impact?
  5. Question 106: A security practitioner needs to implement a solution to verify endpoint security protections and operating system (OS) versions. Which of the following is the…
  6. Question 107: An organization recently upgraded to a Voice over Internet Protocol (VoIP) phone system. Management is concerned with unauthorized phone usage. The security co…
  7. Question 108: What is the FIRST step for an organization to take before allowing personnel to access social media from a corporate device or user account?
  8. Question 109: Security Software Development Life Cycle (SDLC) expects application code to be written in a consistent manner to allow ease of auditing and which of the follow…
  9. Question 110: An information technology (IT) employee who travels frequently to various countries remotely connects to an organization's resources to troubleshoot problems.…
  10. Question 111: Why would a system be structured to isolate different classes of information from one another and segregate them by user jurisdiction?