← Back to exam page

CISSP Certified Information Systems Security Professional

Loading demo links...

Showing 16–18 of 20 questions

Question 16 (Communication and Network Security)

Access to which of the following is required to validate web session management?

Select an option, then click Submit answer.

  • Log timestamp

  • Live session traffic

  • Session state variables

  • Test scripts

Question 17 (Jan 2023 Update)

Which of the following would be considered an incident if reported by a security information and event management (SIEM) system?

Select an option, then click Submit answer.

  • An administrator is logging in on a server through a virtual private network (VPN).

  • A log source has stopped sending data.

  • A web resource has reported a 404 error.

  • A firewall logs a connection between a client on the Internet and a web server using Transmission Control Protocol (TCP) on port 80.
Question 18 (Security Operations)

What is the PRIMARY reason for implementing change management?

Select an option, then click Submit answer.

  • Certify and approve releases to the environment

  • Provide version rollbacks for system changes

  • Ensure that all applications are approved

  • Ensure accountability for changes to the environment