CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. BCS
  5. CISMP-V9

Free CISMP-V9 Exam Braindumps (page: 1)

Page 1 of 26
PDF with 100 Questions

Which of the following is NOT an accepted classification of security controls?

  1. Nominative.
  2. Preventive.
  3. Detective.
  4. Corrective.

Answer(s): A



Which three of the following characteristics form the AAA Triad in Information Security?

1. Authentication
2. Availability
3. Accounting
4. Asymmetry
5. Authorisation

  1. 1, 2 and 3.
  2. 2, 4, and 5.
  3. 1, 3 and 4.
  4. 1, 3 and 5.

Answer(s): A

Explanation:

The AAA Triad in Information Security refers to the three characteristics of Authentication, Availability, and Accounting.



According to ISO/IEC 27000, which of the following is the definition of a vulnerability?

  1. A weakness of an asset or group of assets that can be exploited by one or more threats.
  2. The impact of a cyber attack on an asset or group of assets.
  3. The threat that an asset or group of assets may be damaged by an exploit.
  4. The damage that has been caused by a weakness iin a system.

Answer(s): A

Explanation:

Vulnerability
A vulnerability is a weakness of an asset or control that could potentially be exploited by one or more threats. An asset is any tangible or intangible thing or characteristic that has value to an organization, a control is any administrative, managerial, technical, or legal method that can be used to modify or manage risk, and a threat is any potential event that could harm an organization or system.
https://www.praxiom.com/iso-27000-definitions.htm



Which term describes the acknowledgement and acceptance of ownership of actions, decisions, policies and deliverables?

  1. Accountability.
  2. Responsibility.
  3. Credibility.
  4. Confidentiality.

Answer(s): A


Reference:

https://hr.nd.edu/assets/17442/behavior_model_4_ratings_3_.pdf



Page 1 of 26



Post your Comments and Discuss BCS CISMP-V9 exam with other Community members:

bob commented on September 09, 2024
clarification on the level of standards and policy
UNITED STATES
upvote

Lovedeep commented on March 30, 2024
To other guys out there who are going to take this exam. I want to share with you that this exam is extremely hard. Unless you study a lot and use these exam questions dumps you are not going to pass. I pass my exam after 2 attempt but these questions are word by word and was a live saver.
UNITED KINGDOM
upvote

Noobtastic commented on March 29, 2024
In a security governance framework, which of the following publications would be at the HIGHEST level? the answer should be policy
UNITED KINGDOM
upvote

dave commented on March 29, 2024
Question 8 from the official BCS text book "A policy is a high-level statement of an organisation’s values, goals and objectives in a specific area"
Anonymous
upvote

dave commented on March 29, 2024
Question 2 answer is wrong Availability is not one of AAA
Anonymous
upvote

sarra commented on January 17, 2024
the aaa triad in information security is authentication, accounting and authorisation so the answer should be d 1, 3 and 5.
UNITED KINGDOM
upvote

Nikki commented on November 07, 2023
The AAA Triad in Information Security is Authentication, Accounting and Authorisation so the answer should be D 1, 3 and 5.
UNITED KINGDOM
upvote