Security Operations

Maintain security operations

Security Operations subtopic covers the management, monitoring, and maintenance of security operations, including incident management, disaster recovery, and business continuity planning.

5 minutes 5 Questions

Concepts covered: Security Configuration Management, Incident Management and Response, Network and Communications Security, Security Awareness and Training, Security Operation Centers, Penetration Testing and Vulnerability Assessments, Patch Management and Software Update Strategies, Business Continuity Planning and Disaster Recovery Planning, System Security and Compliance Monitoring, Access Controls and Identity Management, Asset Management and Protection, Security Auditing and Testing, Threat Intelligence and Information Sharing

Test mode:

Exam (Timed)

Practice (With explanations)

Start practice test

CISSP - Security Operations Example Questions

Test your knowledge of Amazon Simple Storage Service (S3)

Question 1

What is the purpose of a perimeter firewall?

To secure internal applications from being accessed by external users To prevent unauthorized external access to an organization's internal network To only block outgoing traffic from the internal network To allow all external traffic to pass through to the internal network

Correct Answer: To prevent unauthorized external access to an organization's internal network

A perimeter firewall is typically the first line of defense for an organization's internal network. It is designed to prevent unauthorized external access to the internal network by only allowing certain types of traffic to pass through.

Question 2

What is the most common attack vector for ransomware?

Email attachments PDF downloads External hard drives USB devices

Correct Answer: Email attachments

Ransomware typically spreads through attachments in emails and phishing scams. Other methods of infection are less common.

Question 3

What is a common method used to escalate privileges in a network?

Cross-site scripting (XSS) SQL Injection Pass the Hash Phishing

Correct Answer: Pass the Hash

Pass the Hash is a method of authenticating to a system using the underlying NTLM hash of a user’s credentials, rather than the plaintext password. This can be used to escalate privileges on a network by using stolen or compromised credentials to move laterally through systems. The other options are common attack vectors but do not specifically relate to privilege escalation.

Go Premium

CISSP Preparation Package (2024)

4537 Superior-grade CISSP practice questions.
Accelerated Mastery: Deep dive into critical topics to fast-track your mastery.
Unlock Effortless CISSP preparation: 5 full exams.
100% Satisfaction Guaranteed: Full refund with no questions if unsatisfied.
Bonus: If you upgrade now you get upgraded access to all courses
Risk-Free Decision: Start with a 7-day free trial - get premium features at no cost!

Start Your Free 7-Day Trial