ISC2 CSSLP Certified Secure Software Lifecycle Professional Exam Exam Practice Test Questions

• Question 1

  You are responsible for network and information security at a metropolitan police station. The most important concern is that unauthorized parties are not able to access data. What is this called?

  • Confidentiality
  • Availability
  • Integrity
  • Encryption

  Show Answer Answer: A Next

• Question 2

  Fill in the blank with an appropriate security type. applies the internal security policies of the software applications when they are deployed.

  • Programmatic security

  Show Answer Answer: A Next

• Question 3

  Which of the following techniques is used when a system performs the penetration testing with the objective of accessing unauthorized information residing inside a computer?

  • Biometrician
  • Van Eck Phreaking
  • Port scanning
  • Phreaking

  Show Answer Answer: C Next

• Question 4

  Which of the following are the responsibilities of a custodian with regard to data in an information classification program? Each correct answer represents a complete solution. Choose three.

  • Performing data restoration from the backups when necessary
  • Running regular backups and routinely testing the validity of the backup data
  • Determining what level of classification the information requires
  • Controlling access, adding and removing privileges for individual users

  Show Answer Answer: A, B, D Next

• Question 5

  In which of the following phases of the DITSCAP process does Security Test and Evaluation (ST&E) occur?

  • Phase 2
  • Phase 4
  • Phase 3
  • Phase 1

  Show Answer Answer: C Next