Higher Test Marks with Free Online CISMP-V9 Exam Practice

Assess the CertsIQ’s updated CISMP-V9 exam questions for free online practice of your BCS Foundation Certificate in Information Security Management Principles V9.0 test. Our CISMP V9 dumps questions will enhance your chances of passing the IT Service Management certification exam with higher marks.

Question 1

One traditional use of a SIEM appliance is to monitor for exceptions received via syslog.

What system from the following does NOT natively support syslog events?

Options :

A : Enterprise Wireless Access Point.

B : Windows Desktop Systems.

C : Linux Web Server Appliances.

D : Enterprise Stateful Firewall.

Answer: C

Question 2

Why have MOST European countries developed specific legislation that permits police and security services to monitor communications traffic for specific purposes, such as the detection of crime?

Options :

A : Under the European Convention of Human Rights, the interception of telecommunications represents an interference with the right to privacy.

B : GDPR overrides all previous legislation on information handling, so new laws were needed to ensure authorities did not inadvertently break the law.

C : Police could previously intercept without lawful authority any communications in the course of transmission through a public post or telecoms system.

D : Surveillance of a conversation or an online message by law enforcement agents was previously illegal due to the 1950 version of the Human Rights Convention.

Answer: C

Question 3

When calculating the risk associated with a vulnerability being exploited, how is this risk calculated?

Options :

A : Risk = Likelihood * Impact.

B : Risk = Likelihood / Impact.

C : Risk = Vulnerability / Threat.

D : Risk = Threat * Likelihood.

Answer: C

Question 4

What type of diagram used in application threat modeling includes malicious users as well as descriptions like mitigates and threatens?

Options :

A : Threat trees.

B : STRIDE charts.

C : Misuse case diagrams.

D : DREAD diagrams.

Answer: A

Question 5

Which of the following is a framework and methodology for Enterprise Security Architecture and Service Management?

Options :

A : TOGAF

B : SABSA

C : PCI DSS.

D : OWASP.

Answer: B