Free ISC2 CCSP Exam Dumps and CCSP Exam Questions

Question No: 21

MultipleChoice

Which of the following BCDR testing methodologies is least intrusive?

Response:

Options

AWalk-through

BSimulation

CTabletop

DFull test

Question No: 22

MultipleChoice

The Restatement (Second) Conflict of Law refers to which of the following?

Response:

Options

AThe basis for deciding which laws are most appropriate in a situation where conflicting laws exist

BWhen judges restate the law in an opinion

CHow jurisdictional disputes are settled

DWhether local or federal laws apply in a situation

Question No: 23

MultipleChoice

Although performing BCDR tests at regular intervals is a best practice to ensure processes and documentation are still relevant and efficient, which of the following represents a reason to conduct a BCDR review outside of the regular interval?

Response:

Options

AStaff changes

BApplication changes

CRegulatory changes

DManagement changes

Question No: 24

MultipleChoice

What type of software is often considered secured and validated via community knowledge?

Response:

Options

AProprietary

BObject-oriented

COpen source

DScripting

Question No: 25

MultipleChoice

What are the four cloud deployment models?

Response:

Options

APublic, Internal, Hybrid, and Community

BExternal, Private, Hybrid, and Community

CPublic, Private, Joint, and Community

DPublic, Private, Hybrid, and Community

Question No: 26

MultipleChoice

Halon is now illegal to use for data center fire suppression. What is the reason it was outlawed?

Response:

Options

AIt poses a threat to health and human safety when deployed.

BIt can harm the environment.

CIt does not adequately suppress fires.

DIt causes undue damage to electronic systems.

Question No: 27

MultipleChoice

You are a consultant performing an external security review on a large manufacturing firm. You determine that its newest assembly plant, which cost $24 million, could be completely destroyed by a fire but that a fire suppression system could effectively protect the plant.

The fire suppression system costs $15 million. An insurance policy that would cover the full replacement cost of the plant costs $1 million per month.

In order to establish the true annualized loss expectancy (ALE), you would need all of the following information except ____________.

Response:

Options

AThe amount of revenue generated by the plant

BThe rate at which the plant generates revenue

CThe length of time it would take to rebuild the plant

DThe amount of product the plant creates

Question No: 28

MultipleChoice

Which of the following is NOT a common component of a DLP implementation process?

Response:

Options

ADiscovery

BMonitoring

CRevision

DEnforcement

Question No: 29

MultipleChoice

Which SSAE 16 audit report is simply an attestation of audit results?

Response:

Options

ASOC 1

BSOC 2, Type 1

CSOC 2, Type 2

DSOC 3

Question No: 30

MultipleChoice

SOC 2 reports were intended to be ____________.

Response:

Options

AReleased to the public

BOnly technical assessments

CRetained for internal use

DNonbinding