ISC2 Exam ISSMP Topic 1 Question 64 Discussion

Actual exam question for ISC2's ISSMP exam

Question #: 64
Topic #: 1

You work as a security manager for SoftTech Inc. You are conducting a security awareness campaign for your employees. One of the employees of your organization asks you the purpose of the security awareness, training and education program. What will be your answer?

AIt improves the possibility for career advancement of the IT staff.

BIt improves the security of vendor relations.

CIt improves the performance of a company's intranet.

DIt improves awareness of the need to protect system resources.

Show Suggested Answer

Suggested Answer: B, D

The Biba model is a formal state transition system of computer security policy that describes a set of access control rules designed to ensure data integrity. Data and subjects are grouped into ordered levels of integrity. The model is designed so that subjects may not corrupt data in a level ranked higher than the subject, or be corrupted by data from a lower level than the subject.

The Clark-Wilson security model provides a foundation for specifying and analyzing an integrity policy for a computing system.

Answer option C is incorrect. The Bell-LaPadula access control model is mainly used in military systems.

Answer option A is incorrect. There is no such access control model as Clark-Biba.

by Joesph at Feb 27, 2023, 08:23 AM

Limited Time Offer

25%

18 days ago

The correct answer is D. Security awareness training is crucial for employees to understand the importance of protecting company resources and sensitive information.

upvoted 0 times

...