Scribd
Upload
19 views

CISSP Q1

The document contains multiple choice questions related to CISSP Domain 1: Security and Risk Management, focusing on security governance principles and compliance/legal requirements. Key topics include the primary goal of information security governance, the role of senior management, and relevant laws such as HIPAA and the Sarbanes-Oxley Act. Answers provided highlight the importance of aligning security strategies with business objectives and improving financial reporting integrity.

Uploaded by

isaacfiififerguson
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
19 views

CISSP Q1

The document contains multiple choice questions related to CISSP Domain 1: Security and Risk Management, focusing on security governance principles and compliance/legal requirements. Key topics include the primary goal of information security governance, the role of senior management, and relevant laws such as HIPAA and the Sarbanes-Oxley Act. Answers provided highlight the importance of aligning security strategies with business objectives and improving financial reporting integrity.

Uploaded by

isaacfiififerguson
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 2

CISSP Domain 1: Security and Risk Management - Multiple Choice Questions

Section 1: Security Governance Principles

1. Which of the following is the primary goal of information security governance?


o A) To reduce security spending
o B) To align security strategies with business objectives
o C) To implement technical security controls
o D) To achieve regulatory compliance

Answer: B) To align security strategies with business objectives

2. What is the role of senior management in information security governance?


o A) Implement security policies
o B) Approve and support security initiatives
o C) Conduct penetration testing
o D) Manage firewall configurations

Answer: B) Approve and support security initiatives

3. Which security framework provides best practices for aligning IT with business needs?
o A) ISO/IEC 27001
o B) COBIT
o C) ITIL
o D) NIST SP 800-53

Answer: B) COBIT

Section 2: Compliance and Legal Requirements

4. Which of the following laws is primarily focused on protecting personal health


information (PHI)?
o A) SOX
o B) HIPAA
o C) GLBA
o D) FISMA

Answer: B) HIPAA

5. The Sarbanes-Oxley Act (SOX) is designed to improve which aspect of an organization?


o A) Customer service
o B) Financial reporting integrity
o C) Physical security controls
o D) Supply chain management
Answer: B) Financial reporting integrity

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy