ISC CISSP-ISSMP ISC Information Systems Security Management Professional Online Training
ISC CISSP-ISSMP Online Training
The questions for CISSP-ISSMP were last updated at Jul 12,2025.
- Exam Code: CISSP-ISSMP
- Exam Name: ISC Information Systems Security Management Professional
- Certification Provider: ISC
- Latest update: Jul 12,2025
Peter works as a Computer Hacking Forensic Investigator. He has been called by an organization to conduct a seminar to give necessary information related to sexual harassment within the work place. Peter started with the definition and types of sexual harassment. He then wants to convey that it is important that records of the sexual harassment incidents should be maintained, which helps in further legal prosecution.
Which of the following data should be recorded in this documentation? Each correct answer represents a complete solution. Choose all that apply.
- A . Names of the victims
- B . Location of each incident
- C . Nature of harassment
- D . Date and time of incident
Which of the following types of evidence is considered as the best evidence?
- A . A copy of the original document
- B . Information gathered through the witness’s senses
- C . The original document
- D . A computer-generated record
What are the purposes of audit records on an information system? Each correct answer represents a complete solution. Choose two.
- A . Troubleshooting
- B . Investigation
- C . Upgradation
- D . Backup
Which of the following refers to an information security document that is used in the United States Department of Defense (DoD) to describe and accredit networks and systems?
- A . SSAA
- B . FITSAF
- C . FIPS
- D . TCSEC
Which of the following analysis provides a foundation for measuring investment of time, money and human resources required to achieve a particular outcome?
- A . Vulnerability analysis
- B . Cost-benefit analysis
- C . Gap analysis
- D . Requirement analysis
A contract cannot have provisions for which one of the following?
- A . Subcontracting the work
- B . Penalties and fines for disclosure of intellectual rights
- C . A deadline for the completion of the work
- D . Illegal activities
Your company is covered under a liability insurance policy, which provides various liability coverage for information security risks, including any physical damage of assets, hacking attacks, etc.
Which of the following risk management techniques is your company using?
- A . Risk mitigation
- B . Risk transfer
- C . Risk acceptance
- D . Risk avoidance
You work as a security manager for SoftTech Inc. You are conducting a security awareness campaign for your employees. One of the employees of your organization asks you the purpose of the security awareness, training and education program.
What will be your answer?
- A . It improves the possibility for career advancement of the IT staff.
- B . It improves the security of vendor relations.
- C . It improves the performance of a company’s intranet.
- D . It improves awareness of the need to protect system resources.
You are responsible for network and information security at a metropolitan police station. The most important concern is that unauthorized parties are not able to access data.
What is this called?
- A . Availability
- B . Encryption
- C . Integrity
- D . Confidentiality
What component of the change management system is responsible for evaluating, testing, and documenting changes created to the project scope?
- A . Scope Verification
- B . Project Management Information System
- C . Integrated Change Control
- D . Configuration Management System
Latest CISSP-ISSMP Dumps Valid Version with 218 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
