RCR 056: Chain of Custody Questions for the CISSP Exam (Domain 8) - CISSP Training and Study!

cissp cissp domains cissp exam guide cissp exam questions cissp for dummies cissp prep cissp salary cissp study guide cissp syllabus cissp training cissp training free cybersecurity isc2 cissp Jan 08, 2020



Shon Gerber from ShonGerber.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career.  Shon utilizes his expansive knowledge while providing superior training from his years of training people in cybersecurity. 

 In this episode, Shon will talk about questions for Domain 8 (Software Development Security) of the CISSP Exam.

 CISSP Exam Questions:


An edict stating that all evidence be labeled with information about who secured it and who validated it is called _______________.

  • A. CERT
  • B. Chain of custody
  • C. Direct evidence
  • D. Incident response policy


A thorough and accurate chain of custody record is critical in an investigation process. The process includes labeling physical evidence and compiling a complete history of how evidence was collected, analyzed, transported and preserved.

From <https://searchsecurity.techtarget.com/quiz/CISSP-Domain-8-quiz-Law-Investigations-and-Ethics?q0=1&q1=0&q2=2&q3=1&q4=1&q5=1&q6=2&q7=0&q8=2&q9=0&q10=1&q11=3&q12=0&q13=3&q14=2&x=69&y=11>


The golden arches of McDonald's are protected under what intellectual property law?

  • A. Trademark
  • B. Trade secret
  • C. Logo protection
  • D. Copyright

 CORRECT ANSWER - A. Trademark 

Trademarks can exist in a variety of forms -- a word, shape, graphic or phrase. The determining factor is whether or not it alone represents the larger organization in the eyes of the outside world. McDonald's, for example, is known worldwide for its golden arches. This symbol is an identifier of the restaurant and thus falls under trademark law.

From <https://searchsecurity.techtarget.com/quiz/CISSP-Domain-8-quiz-Law-Investigations-and-Ethics?q0=1&q1=0&q2=2&q3=1&q4=1&q5=1&q6=2&q7=0&q8=2&q9=0&q10=1&q11=3&q12=0&q13=3&q14=2&x=69&y=11>


Which is not true of the Federal Sentencing Guidelines, which were enacted in 1991?

  • A. Developed specifically to address white-collar crimes
  • B. Detailed the specific responsibilities of senior executives within companies
  • C. Established a maximum fine of $100 million
  • D. Encouraged the implementation of security policies and a security program

 CORRECT ANSWER - C. Established a maximum fine of $100 million 

Because laws and sentencing guidelines were not addressing white-collar crimes related to technology, the Federal Sentencing Guidelines were developed. These guidelines targeted the assumed responsibilities of senior executives and imposed maximum fines of $290 million per instance. However, these fines could be avoided if companies could prove proper due diligence and due care, and the existence of company-wide security policies and programs.

 From <https://searchsecurity.techtarget.com/quiz/CISSP-Domain-8-quiz-Law-Investigations-and-Ethics?q0=1&q1=0&q2=2&q3=1&q4=1&q5=1&q6=2&q7=0&q8=2&q9=0&q10=1&q11=3&q12=0&q13=3&q14=2&x=69&y=11>

 BTW - Get access to all my CISSP Training Courses here at:  https://shongerber.com/

Want to find Shon Gerber elsewhere on the internet?

LinkedIn – www.linkedin.com/in/shongerber

Facebook - https://www.facebook.com/CyberRiskReduced/



welcome to the reduce cyber risk podcast where we provide you the training and tools you need to pass the cissp exam while enhancing your cybersecurity career hi my name is Sean Gerber and I'm your host for this action-packed informative podcasts each week cuz I provide the information you need to grow your cybersecurity knowledge so that you're better prepared to pass the cissp exam all right spell Shon Gables reduce Severus podcast in this is episode 27 of the cissp exam questions domain well this wonderful week and you're getting studied up for your CIA the exam are the questions a day early coming to you from techtarget so I was like like to Drew's I'd like to try to go out and get it for questions that are out there to help you with your studying abilities and I know studying for the cissp exam can be a challenge and therefore this is the goals try to help you with that we'll see what happens right so we're going to start with question number one and eat it stating that all evidence be labeled with information about who secured it who validated it is called what an edict stating a statement stating that all evidence be labeled with information about who secured it and who validated is called what a cert computer Emergency Response Team B chain of custody see direct evidence D incident response policy by what you start your investor and it keeps it going through the whole process and labels it and accounts to whomever is dealing with that information so then the golden arches at McDonald's question to the goal Donald's are protected under what intellectual property law a trademark betrayed secret logo protection the copyright alright the Big M I would throw if you didn't know you were going to go with me doesn't sound legal enough copyright that is not so much cuz that's dealing more with printed documents add trademark or trade secret will trade secrets typically something that you have like a formula or something along those lines trademark would fall under the tomark and it fall under the McDonald's think so the answer is yes it is a trademark word shape graphic or a phrase but in the case at McDonald's this was what call a tank that answer is eight the golden arches of McDonald's are protected under what intellectual property law a trademark all right question 3 which which is not true of the federal sentencing guidelines which were enacted in 1991 long time ago but will these about in these are all related to cybersecurity stuff so as we're dealing with cissp it cyber-security poo all right so a developed specifically to address white collar crimes be detailed the specific responsibilities of senior Executives within a company see established the maximum fine of $100 or d in cursive implementation of security policies and a security program Federal sentencing guidelines which ones of those could it be that those are all kind of squishy butts pretty vague and then you get the ones that's pretty detect to find 100 billion dollars now honestly I would do a process of elimination on this but the key on this one is not true. Which one of these is not true and it basically comes down to is c c is the not true statement of this question the maximum fine is approximately $290 per instance that's what they have set up a lot of these questions can be available to you at Tech target.com or you can go to Sean gerber.com and you can get all these questions along with each other all right that's all the questions I have for this week I hope you have a wonderful day and I will catch you on the flip side see you thanks so much for joining me today on my podcast if you like what you heard please leave a review on iTunes appreciate the feedback YouTube just search for Shawn s h o n Gerber like the baby food toilet or whatever you choose and then you will find a plethora of content to help you pass the cissp exam the first time Leslie head over to Sean gerber.com and look at the Cornucopia free cissp materials available to all my email subscribers

CISSP Cyber Training Academy Program!

Are you an ambitious Cybersecurity or IT professional who wants to take your career to a whole new level by achieving the CISSP Certification? 

Let CISSP Cyber Training help you pass the CISSP Test the first time!