Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. ISC2
  5. CISSP

ISC2 CISSP Exam
Certified Information Systems Security Professional (CISSP) (Page 10 )

Updated On: 12-Feb-2026
Page 10 of 98
PDF with 484 Questions

Which of the following is the BEST option to reduce the network attack surface of a system?

  1. Disabling unnecessary ports and services
  2. Ensuring that there are no group accounts on the system
  3. Uninstalling default software on the system
  4. Removing unnecessary system user accounts

Answer(s): A



The security architect is designing and implementing an internal certification authority to generate digital certificates for all employees. Which of the following is the
BEST solution to securely store the private keys?

  1. Physically secured storage device
  2. Trusted Platform Module (TPM)
  3. Encrypted flash drive
  4. Public key infrastructure (PKI)

Answer(s): B



The existence of physical barriers, card and personal identification number (PIN) access systems, cameras, alarms, and security guards BEST describes this security approach?

  1. Access control
  2. Security information and event management (SIEM)
  3. Defense-in-depth
  4. Security perimeter

Answer(s): C



A hospital enforces the Code of Fair Information Practices. What practice applies to a patient requesting their medical records from a web portal?

  1. Purpose specification
  2. Collection limitation
  3. Use limitation
  4. Individual participation

Answer(s): D



A colleague who recently left the organization asked a security professional for a copy of the organization's confidential incident management policy. Which of the following is the BEST response to this request?

  1. Access the policy on a company-issued device and let the former colleague view the screen.
  2. E-mail the policy to the colleague as they were already part of the organization and familiar with it.
  3. Do not acknowledge receiving the request from the former colleague and ignore them.
  4. Submit the request using company official channels to ensure the policy is okay to distribute.

Answer(s): C






Post your Comments and Discuss ISC2 CISSP exam prep with other Community members:

Join the CISSP Discussion