Certificate in Information Security Management Principles (CISMP) Quiz Questions and Answers

The classification level of an asset must be primarily based on which of the following choices?

Answer :
  • Criticality and sensitivity

If the accuracy of information is a major concern, which of the following would be used to ensure this is covered effectively?

Answer :
  • Integrity.

When a user logs onto a computer system and is asked for their mother’s maiden name, which of the following aspects is the system ensuring?

Answer :
  • Authentication.

How should the implementation of an information assurance system be seen within an organisation?

Answer :
  • As a whole organisation issue.

How should the use of an international standard for information security be viewed by senior managers within an organisation?

Answer :
  • As implementing best practice.

Non repudiation_________

Answer :
  • Protects against a person denying later that a communication or transaction took place.

A potential cause of an incident that may result in harm to system_________.

Answer :
  • Threat

The process of checking the authentication of an individual or resource to establish and confirm their authorized use of, or access to, information or other assets is_________.

Answer :
  • Authorization

A risk assessment is designed to achieve which of the following?

Answer :
  • To identify the degree of likelihood that a threat will occur and its likely impact.

Quantitative risk assessment is__________.

Answer :
  • A numerical means to measure comparative risks.