RCR 084: Practice CISSP Exam Questions - CISSP Training and Study!

Description: 

Shon Gerber from ShonGerber.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career.  Shon utilizes his expansive knowledge while providing superior training from his years of training people in cybersecurity.   

In this episode, Shon will talk about the following items that are included within Domain 1 (Security and Risk Management) of the CISSP Exam. 

BTW - Get access to all my CISSP Training Courses here at:  https://shongerber.com/ 

CISSP Exam Questions 

Question:  132 

Which of the following is less likely to accompany a contingency plan, either within the plan itself or in the form of an appendix? 

1. 
   Contact information for all personnel 
2. Vendor contract information, including offsite storage and alternate site 
3. Equipment ad system requirements lists of hardware, software, firmware, and other resources required to support system operations 
4. The Business Impact Analysis

 
Answer: D Explanation: You use the BIA as a guideline to create the contingency plan. 

Answer: C 
Explanation: Time sensitivity and mission criticality in conjunction with budgetary limitations, level of threat and degree of risk will be major factors in the development of recommended strategies Reference: 
http://csrc.nist.gov/groups/SMA/fasp/documents/contingency_planning/contingencyplantemplate.doc 

https://www.brainscape.com/flashcards/business-continuity-planning-4303634/packs/6456925 

------------------------------------ 

Question:  133 

The first step in contingency planning is to perform: 

1. A hardware backup
   B. A data backup
   C. An operating system software backup 
   D. An application software backup 

Answer: B 

https://www.brainscape.com/flashcards/business-continuity-planning-4303634/packs/6456925 

------------------------------------ 

Question:  134 

Which of the following teams should not be included in an organization’s contingency plan? 
 

1. Damage assessment team
   B. Hardware salvage team
   C. Tiger team 
   D. Legal affairs team 

Answer: C 
Explanation: Tiger is an algorithm Excerpt is from CISSP / Shon Harris / 5th edition. 

https://www.brainscape.com/flashcards/business-continuity-planning-4303634/packs/6456925 

------------------------------------ 

Want to find Shon elsewhere on the internet? 

LinkedIn – www.linkedin.com/in/shongerber 

Facebook - https://www.facebook.com/CyberRiskReduced/ 

LINKS:  

• ISC2 Training Study Guide
  • https://www.isc2.org/Training/Self-Study-Resources

TRANSCRIPT:

welcome to reduce Sakura's podcast episode 84 cissp exam questions domain 1 welcome to reduce cyber risk podcast where we provide you the training tools you need to pass the cissp exam while enhancing your cyber-security career hi my name is Sean Gerber and I'm your host of this action-packed informative podcast join me each week is I provide the information you need to grow your cybersecurity knowledge so that you're better prepared to pass the cissp exam hey good morning everybody hope everybody's doing well this beautiful day and today we're talkin about other cissp exam questions to deal with as you're studying for the cissp exam and today is going to be the following episode as it relates to business continuity planning and with all the things going on with the coronavirus then the business continuity planning is an important part of what you so from a cybersecurity standpoint you need to know it as the cissp exam and secondly you need to know it as far as in your career and what you should do to protect the company that you work for So today we're going to get into the BCB question what which of the following is less likely to accompany a contingency plan either within the plant itself or in the form of an appendix okay so which of the following is less likely to accompany a contingency plan whether either within the plant itself or in the form of the appendix a contact information for all personnel vendor contract information including off-site storage and alternate site equipment add system requirements list of Hardware software firmware and other resources required to Support Systems Operations and D the business impact analysis okay so which one of these are less likely to accompany the business continuity the contingency plan either within the plant itself or the form of an appendix and the answer is the business impact analysis not so all of these things can be made each one of them old as far as which one should or shouldn't be in the appendix not be in the appendix itself what would be your critical systems but it definitely would be there now your contact information of all Personnel that may be in there you may not have everybody depend on the size of your company but you may have all the key leader who in turn would have individuals of all of them as well so that's that would be really hard to keep up an updated list but your eyes are high you would have some form of contact information for everybody vendor contract information including off-site storage and Alternate Side that would typically be in a contingency plan you would see something like that and then equipment add system requirements list of Hardware software firmware excetera those can be put in there again is be very onuris and hard to maintain and keep it up to speed up to date but I have seen those in the contingency plans as well Tennessee planning is to perform a hardware backup data backup see an operating system software backup application software backup cast of the question is the first step in the contingency planning is to perform a hardware backup a data backup an operating system software backup or application software backhoe the answer is data backup so typically is backups on other aspects one may not be this easy to do and to duraline at that useful all comes down to is my friend mentioned it when it comes down to it all comes down to the data database it's all about the data so you want to make sure that you have a good solid backup of your data next question following teams should not not be included in an organization's contingency plan a damage assessment team Bee Hardware Salvage team tiger team Andy legal Affairs team so which one of these should not be included in the organization's contingency plan team Hardware Salvage team and then legal Affairs team okay so which one it is see a tiger team a tiger team just a group of people you stick together and you will attack something right it's basically comes down to the fact that it really isn't anybody thing that you would have within your organization's contingency plan I hope you all enjoy that this was a questions for today we will move on to some other ones will be some more around continuity planning in the next episode but if you have got to Sean gerber.com and you can check out my cissp training that I have available in a bunch of free content Des Moines 1 through 8 I have some excerpts from my cissp training available for free for free discussion time as well as you get access to my ciso training is available for individuals who are wanting to to get a little more understanding of what sea is owes need to do with the officers that is available for you as well only for my podcast listeners right now you'll be able to get that if you go directly to my site and look for ciso training all right I hope you all have a wonderful day and we podcast and so much more it's all available to my email subscriber so sign up if you want my personalized cissp training purchase my training courses and I'll be there to help you with your cissp need so you can pass the test the first time thanks so much for listening will catch on the flip side