Back to Security and Risk Management

Threat and Vulnerability Management

5 minutes 5 Questions

Threat and vulnerability management involves identifying, assessing, and addressing vulnerabilities and threats that may impact an organization's information systems and assets. Threats can come from various sources, including nation-states, organized crime groups, hacktivists, or even insiders. Vu…

Test mode:
Start practice test
CISSP - Threat and Vulnerability Management Example Questions

Test your knowledge of Threat and Vulnerability Management

Question 1

During a routine security assessment, a security analyst needs to classify system weaknesses that are prone to exploitation without using intrusive methods. What type of assessment is most appropriate?

Correct Answer: Passive vulnerability assessment

A passive vulnerability assessment is the most appropriate type of security assessment to classify system weaknesses without using intrusive methods. In a passive vulnerability assessment, the analyst conducts the assessment without actively engaging with the system's defenses. This means that the analyst does not interact in a way that would be detectable by the system, such as by running exploits, but rather examines the system for known vulnerabilities without attempting to exploit them.

An active vulnerability assessment involves interacting with the system to discover weaknesses, which can include running scanning tools that actively engage with system components. This activity could potentially be noticed by security systems, making it more intrusive. 'Aggressive penetration testing' is even more intrusive, as it actively tries to exploit vulnerabilities to assess what an attacker could achieve after a successful breach. 'Comprehensive risk analysis' refers to a broad assessment that identifies risks and vulnerabilities but is not limited to identifying system weaknesses that can be exploited; it also considers threats, asset values, and business impact, which goes beyond the scope of a security analyst looking to categorize exploitable system weaknesses non-intrusively.

Question 2

A new employee, Alice, was given a laptop for her work and will often connect to the company's VPN while working remotely. Which security measures should be prioritized to mitigate the risks associated with remote work?

Correct Answer: Implement multi-factor authentication for VPN access

Multi-factor authentication helps to ensure that only authorized users are accessing the VPN, reducing the risk of unauthorized access. Disabling WiFi, not implementing antivirus by default or sharing credentials via unencrypted email can create security vulnerabilities. Using the same password for all employees and allowing unrestricted access to all resources is not in line with the principle of least privilege.

Question 3

Susan's company is facing an increased number of phishing attacks. They need a solution to reduce the chances of their employees falling victim to these threats. Which technology should they consider implementing?

Correct Answer: Email content filters

Email content filters analyze incoming emails for malicious content or phishing attempts, reducing the chances of employees receiving threats via email. Biometric authentication, IDS, static packet filtering, VPN, and SIEM may help improve overall security posture but do not target phishing attacks via email directly.

More Threat and Vulnerability Management questions
12 questions (total)
Start 12 question test