• ホーム
  • ブログ
  • [2025年03月]更新のCC問題集本日限定!無料アクセス可能に!GoShikenで試そう [Q82-Q102]

[2025年03月]更新のCC問題集本日限定!無料アクセス可能に!GoShikenで試そう [Q82-Q102]

Share

[2025年03月]更新のCC問題集本日限定!無料アクセス可能に!GoShikenで試そう

学習材料は有効CC効率的問題集!

質問 # 82
Handel is a senior manager at Triffid, Inc., and is in charge of implementing a new access control scheme for the company. Handel wants to ensure that employees who are assigned to new positions in the company do not retain whatever access they had in their old positions. Which method should Handel select?

  • A. Discretionary access controls (DAC)
  • B. Logging
  • C. Role-based access controls (RBAC)
  • D. Mandatory access controls (MAC)

正解:C


質問 # 83
A tool that inspects outbound traffic to reduce potential threats.

  • A. NIDS (network-based intrusion-detection systems)
  • B. Anti-malware
  • C. DLP (data loss prevention)
  • D. Firewall

正解:C


質問 # 84
All of the following are typically perceived as drawbacks to biometric systems, except:

  • A. Retention of physiological data past the point of employment
  • B. Legality
  • C. Potential privacy concerns
  • D. Lack of accuracy

正解:D


質問 # 85
Which of the following activities is usually part of the configuration management process, but is also extremely helpful in countering potential attacks?

  • A. Conferences with senior leadership
  • B. The annual shareholders' systems
  • C. Updating and patching systems
  • D. Annual budgeting

正解:C


質問 # 86
Within the organization, who can identify risk?

  • A. Anyone
  • B. Senior management
  • C. The security manager
  • D. Any security team member

正解:A


質問 # 87
Triffid Corporation has a policy that all employees must receive security awareness instruction before using email; the company wants to make employees aware of potential phishing attempts that the employees might receive via email. What kind of control is this instruction?

  • A. Finite
  • B. Physical
  • C. Administrative
  • D. Technical

正解:C


質問 # 88
Which of the following is not a typical benefit of cloud computing services?

  • A. Reduced cost of ownership/investment
  • B. Metered usage
  • C. Freedom from legal constraints
  • D. Scalability

正解:C


質問 # 89
Hashing is often used to provide _______.

  • A. Availability
  • B. Confidentiality
  • C. Integrity
  • D. Value

正解:C


質問 # 90
______ is used to ensure that configuration management activities are effective and enforced.

  • A. Verification and audit
  • B. Identification
  • C. Baseline
  • D. Inventory

正解:A


質問 # 91
Glen is an (ISC)² member. Glen receives an email from a company offering a set of answers for an (ISC)² certification exam. What should Glen do?

  • A. Nothing
  • B. Inform law enforcement
  • C. Inform Glen's employer
  • D. Inform (ISC)²

正解:D


質問 # 92
Which of the following probably poses the most risk?

  • A. A high-likelihood, high-impact event
  • B. A high-likelihood, low-impact event
  • C. A low-likelihood, high-impact event
  • D. A low-likelihood, low-impact event

正解:A


質問 # 93
Barry wants to upload a series of files to a web-based storage service, so that people Barry has granted authorization can retrieve these files. Which of the following would be Barry's preferred communication protocol if he wanted this activity to be efficient and secure?

  • A. SFTP (Secure File Transfer Protocol)
  • B. SNMP (Simple Network Management Protocol)
  • C. FTP (File Transfer Protocol)
  • D. SMTP (Simple Mail Transfer Protocol)

正解:A


質問 # 94
A tool that filters inbound traffic to reduce potential threats.

  • A. DLP (data loss prevention)
  • B. Anti-malware
  • C. Firewall
  • D. NIDS (network-based intrusions-detection systems)

正解:C


質問 # 95
What is the goal of an incident response effort?

  • A. No incident ever happen
  • B. Save money
  • C. Punish wrongdoers
  • D. Reduce the impact of incidents on operations

正解:D


質問 # 96
Gary is an attacker. Gary is able to get access to the communication wire between Dauphine's machine and Linda's machine and can then surveil the traffic between the two when they're communicating. What kind of attack is this?

  • A. DDOS
  • B. Physical
  • C. On-path
  • D. Side channel

正解:C


質問 # 97
Visitors to a secure facility need to be controlled. Controls useful for managing visitors include all of the following except:

  • A. Receptionist
  • B. Badges that differ from employee badges
  • C. Fence
  • D. Sign-in sheet/tracking log

正解:C


質問 # 98
What is the risk associated with resuming full normal operations too soon after a DR effort?

  • A. Regulators might disapprove
  • B. The danger posed by the disaster might still be present
  • C. Investors might be upset
  • D. The organization could save money

正解:B


質問 # 99
Which of these is the most important reason to conduct security instruction for all employees.

  • A. Provide due diligence
  • B. An informed user is a more secure user
  • C. Reduce liability
  • D. It is a moral imperative

正解:B


質問 # 100
Which type of fire-suppression system is typically the least expensive?

  • A. Gaseous
  • B. Oxygen-depletion
  • C. Dirt
  • D. Water

正解:D


質問 # 101
In risk management concepts, a(n) ___________ is something or someone that poses risk to an organization or asset.

  • A. Asset
  • B. Control
  • C. Threat
  • D. Fear

正解:C


質問 # 102
......

最新のCC試験エンジンPDFで全部無料問題集保証:https://www.goshiken.com/ISC/CC-mondaishu.html

最新ISC Certification CC実際の無料試験解答:https://drive.google.com/open?id=1qd2ero6K3otPU_1fXpTMFw0FVaGBhhuE

関するブログ

もっと
CC無料問題集