RCR 090: CISSP Exam Questions for Risk Analysis – CISSP Training and Study!

Subscribe: iTunes | Goggle Play | Stitcher Radio | RSS 

Description: 

Shon Gerber from ShonGerber.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career.  Shon utilizes his expansive knowledge while providing superior training from his years of training people in cybersecurity.   

Shon will provide CISSP training and study around the tools you need to better understand what you need to know to be better prepared for the CISSP Exam Questions.  His knowledge will provide the skills needed to pass the CISSP Exam.  

BTW - Get access to all my Free Content and CISSP Training Courses here at:  https://shongerber.com/  

Available Courses:   

• CISSP Training Course - https://www.shongerber.com/offers/zYsL6MCB 
• CISO Training Course - https://www.shongerber.com/offers/zd2RbL6o 

CISSP Exam Questions 

Question:  153 

 Which commercial business/private sector data classification is used to control information about individuals within an organization? 

1. A) Confidential
2. B) Private
3. C) Sensitive
4. D) Proprietary

Private 

The commercial business/private sector data classification of private is used to protect information about individuals. 

https://www.brainscape.com/subjects/cissp-domains 

------------------------------------ 

Question:  154 

Which of the following is not an element of the risk analysis process? 

1. A) Analyzing an environment for risks
2. B) Creating a cost/benefit report for safeguards to present to upper management
3. C) Selecting appropriate safeguards and implementing them
4. D) Evaluating each threat event as to its likelihood of occurring and cost of the resulting damage

Selecting appropriate safeguards and implementing them 

Risk analysis includes analyzing an environment for risks, evaluating each threat event as to its likelihood of occurring and the cost of the damage it would cause, assessing the cost of various countermeasures for each risk, and creating a cost/benefit report for safeguards to present to upper management. Selecting safeguards is a task of upper management based on the results of risk analysis. It is a task that falls under risk management, but it is not part of the risk analysis process. 

https://www.brainscape.com/subjects/cissp-domains 

------------------------------------ 

Question:  155 

Which of the following is not a defense against collusion? 

1. A) Separation of duties
2. B) Restricted job responsibilities
3. C) Group user accounts
4. D) Job rotation

Group user accounts 

Group user accounts allow for multiple people to log in under a single user account. This allows collusion because it prevents individual accountability. 

https://www.brainscape.com/subjects/cissp-domains 

Want to find Shon elsewhere on the internet? 

LinkedIn – www.linkedin.com/in/shongerber 

Facebook - https://www.facebook.com/CyberRiskReduced/ 

LINKS:  

• ISC2 Training Study Guide 
  • https://www.isc2.org/Training/Self-Study-Resources