Certified Information Systems Security Professional (CISSP) Free Practice Exam Questions

482 real Certified Information Systems Security Professional (CISSP) exam questions with answers and AI explanations. (ISC)² certification prep — page 14 of 49.

  1. Question 132: A senior security engineer has been tasked with ensuring the confidentiality and integrity of the organization’s most valuable personally identifiable informat…
  2. Question 133: During the change management process, which of the following is used to identify and record new risks?
  3. Question 134: The defense strategy “never trust any input” is MOST effective against which of the following web-based system vulnerabilities?
  4. Question 135: What is the MOST effective way to mitigate distributed denial of service (DDoS) attacks?
  5. Question 136: Which function does 802.1X provide?
  6. Question 137: Which of the following is the PRIMARY benefit of implementing an Information Security Management System (ISMS)?
  7. Question 138: Concerning appropriate data retention policies, which of the following is the MAIN risk factor for the availability of archived information?
  8. Question 139: What security technique in the Software Development Life Cycle (SDLC) should be leveraged to BEST ensure secure development throughout a project?
  9. Question 140: In designing the architecture of an access control system, it was determined that confidentiality and controlled access to information were the primary focus.…
  10. Question 141: An organization is building an enterprise system using attribute-based access control (ABAC). To avoid inadvertent exposure, what should organizations do to en…