Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Discussions
  1. Home
  2. ISC
  3. ISC
  4. ISSEP
  5. ISSEP Information Systems Security Engineering Professional Questions and Answers

Pass the ISC ISSEP Questions and answers with ValidTests

Exam ISSEP All Questions
Exam ISSEP Premium Access

View all detail and faqs for the ISSEP exam

Go to Exam
Viewing page 4 out of 7 pages
Viewing questions 31-40 out of questions
Questions # 31:

Diane is the project manager of the HGF Project. A risk that has been identified and analyzed in the project planning processes is now coming into fruition. What individual should respond to the risk with the preplanned risk response

Options:

A.

Project sponsor

B.

Risk owner

C.

Diane

D.

Subject matter expert

Expert Solution
Questions # 32:

Which of the following certification levels requires the completion of the minimum security checklist and more in-depth, independent analysis

Options:

A.

CL 3

B.

CL 4

C.

CL 2

D.

CL 1

Expert Solution
Questions # 33:

Which of the following persons in an organization is responsible for rejecting or accepting the residual risk for a system

Options:

A.

System Owner

B.

Information Systems Security Officer (ISSO)

C.

Designated Approving Authority (DAA)

D.

Chief Information Security Officer (CISO)

Expert Solution
Questions # 34:

Which of the following documents contains the threats to the information management, and the security services and controls required to counter those threats

Options:

A.

System Security Context

B.

Information Protection Policy (IPP)

C.

CONOPS

D.

IMM

Expert Solution
Questions # 35:

Which of the following elements of Registration task 4 defines the system's external interfaces as well as the purpose of each external interface, and the relationship between the interface and the system

Options:

A.

System firmware

B.

System software

C.

System interface

D.

System hardware

Expert Solution
Questions # 36:

Part of your change management plan details what should happen in the change control system for your project. Theresa, a junior project manager, asks what the configuration management activities are for scope changes. You tell her that all of the following are valid configuration management activities except for which one

Options:

A.

Configuration Item Costing

B.

Configuration Identification

C.

Configuration Verification and Auditing

D.

Configuration Status Accounting

Expert Solution
Questions # 37:

Which of the following DoD directives is referred to as the Defense Automation Resources Management Manual

Options:

A.

DoD 8910.1

B.

DoD 7950.1-M

C.

DoD 5200.22-M

D.

DoD 5200.1-R

E.

DoDD 8000.1

Expert Solution
Questions # 38:

Your project team has identified a project risk that must be responded to. The risk has been recorded in the risk register and the project team has been discussing potential risk responses for the risk event. The event is not likely to happen for several months but the probability of the event is high. Which one of the following is a valid response to the identified risk event

Options:

A.

Earned value management

B.

Risk audit

C.

Corrective action

D.

Technical performance measurement

Expert Solution
Questions # 39:

Certification and Accreditation (C&A or CnA) is a process for implementing information security. Which of the following is the correct order of C&A phases in a DITSCAP assessment

Options:

A.

Definition, Validation, Verification, and Post Accreditation

B.

Verification, Definition, Validation, and Post Accreditation

C.

Verification, Validation, Definition, and Post Accreditation

D.

Definition, Verification, Validation, and Post Accreditation

Expert Solution
Questions # 40:

Which of the following terms describes the measures that protect and support information and information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation

Options:

A.

Information Systems Security Engineering (ISSE)

B.

Information Protection Policy (IPP)

C.

Information systems security (InfoSec)

D.

Information Assurance (IA)

Expert Solution
Viewing page 4 out of 7 pages
Viewing questions 31-40 out of questions