最新的ISC Certified Secure Software Lifecycle Professional Practice Test - CSSLP免費考試真題
問題1
Which of the following attacks causes software to fail and prevents the intended users from accessing software?
正確答案: B
說明:(僅 VCESoft 成員可見)
問題2
Which of the following process areas does the SSE-CMM define in the 'Project and Organizational Practices' category? Each correct answer represents a complete solution. Choose all that apply.
正確答案: A,B,D
說明:(僅 VCESoft 成員可見)
問題3
You work as a project manager for BlueWell Inc. You are working on a project and the management wants a rapid and cost-effective means for establishing priorities for planning risk responses in your project. Which risk management process can satisfy management's objective for your project?
正確答案: D
說明:(僅 VCESoft 成員可見)
問題4
Samantha works as an Ethical Hacker for we-are-secure Inc. She wants to test the security of the we-are-secure server for DoS attacks. She sends large number of ICMP ECHO packets to the target computer. Which of the following DoS attacking techniques will she use to accomplish the task?
正確答案: C
說明:(僅 VCESoft 成員可見)
問題5
Which of the following describes the acceptable amount of data loss measured in time?
正確答案: C
說明:(僅 VCESoft 成員可見)
問題6
Which of the following organizations assists the President in overseeing the preparation of the federal budget and to supervise its administration in Executive Branch agencies?
正確答案: C
說明:(僅 VCESoft 成員可見)
問題7
Which of the following individuals inspects whether the security policies, standards, guidelines, and procedures are efficiently performed in accordance with the company's stated security objectives?
正確答案: B
說明:(僅 VCESoft 成員可見)
問題8
John works as a security manager for SoftTech Inc. He is working with his team on the disaster recovery management plan. One of his team members has a doubt related to the most cost effective DRP testing plan. According to you, which of the following disaster recovery testing plans is the most cost-effective and efficient way to identify areas of overlap in the plan before conducting more demanding training exercises?
正確答案: A
說明:(僅 VCESoft 成員可見)
問題9
Stella works as a system engineer for BlueWell Inc. She wants to identify the performance thresholds of each build. Which of the following tests will help Stella to achieve her task?
正確答案: B
說明:(僅 VCESoft 成員可見)
問題10
In which of the following processes are experienced personnel and software tools used to investigate, resolve, and handle process deviation, malformed data, infrastructure, or connectivity issues?
正確答案: E
說明:(僅 VCESoft 成員可見)
問題11
Which of the following models manages the software development process if the developers are limited to go back only one stage to rework?
正確答案: A
說明:(僅 VCESoft 成員可見)
問題12
FITSAF stands for Federal Information Technology Security Assessment Framework. It is a methodology for assessing the security of information systems. Which of the following FITSAF levels shows that the procedures and controls have been implemented?
正確答案: A
說明:(僅 VCESoft 成員可見)
問題13
Which of the following elements of BCP process includes the areas of plan implementation, plan testing, and ongoing plan maintenance, and also involves defining and documenting the continuity strategy?
正確答案: B
說明:(僅 VCESoft 成員可見)
問題14
Rob is the project manager of the IDLK Project for his company. This project has a budget of $5,600,000 and is expected to last 18 months. Rob has learned that a new law may affect how the project is allowed to proceed - even though the organization has already invested over $750,000 in the project. What risk response is the most appropriate for this instance?
正確答案: B,E
說明:(僅 VCESoft 成員可見)
