← Back to exam page

CISSP-ISSMP Information Systems Security Management Professional

Loading demo links...

Showing 4–6 of 15 questions

Question 4

Which of the following are examples of administrative controls that involve all levels of employees within an organization and determine which users have access to what resources and information? Each correct answer represents a complete solution. Choose three.

Select all that apply, then click Submit answer.

  • Employee registration and accounting

  • Disaster preparedness and recovery plans

  • Network authentication

  • Training and awareness

  • Encryption
Question 5

Which of the following subphases are defined in the maintenance phase of the life cycle models?

Select all that apply, then click Submit answer.

  • Change control

  • Configuration control

  • Request control

  • Release control
Question 6

Which of the following types of activities can be audited for security? Each correct answer represents a complete solution. Choose three.

Select all that apply, then click Submit answer.

  • Data downloading from the Internet

  • File and object access

  • Network logons and logoffs

  • Printer access