Free ISC2 ISSEP Exam Questions

Become ISC2 Certified with updated ISSEP exam questions and correct answers

Page: 1 / 44

Total 220 Questions | Updated On: Jan 08, 2025

Add To Cart

Question 1

Continuous Monitoring is the fourth phase of the security certification and accreditation process.

What activities are performed in the Continuous Monitoring process?

Each correct answer represents a complete solution. Choose all that apply.

A : atus reporting and documentation

B : curity control monitoring and impact analyses of changes to the information system

C : nfiguration management and control

D : curity accreditation documentation

E : curity accreditation decision

Answer: A,B,C

Question 2

Which of the following are the most important tasks of the Information Management Plan (IMP)? Each correct answer represents a complete solution. Choose all that apply.

A : fine the Information Protection Policy (IPP)

B : fine the System Security Requirements

C : fine the mission need

D : entify how the organization manages its information.

Answer: A,C,D

Question 3

Which of the following Registration Tasks sets up the system architecture description, and describes the C&A boundary?

A : gistration Task 3

B : gistration Task 4

C : gistration Task 2

D : gistration Task 1

Answer: B

Question 4

Part of your change management plan details what should happen in the change control system for your project. Theresa, a junior project manager, asks what the configuration management activities are for scope changes. You tell her that all of the following are valid configuration management activities except for which one?

A : nfiguration Item Costing

B : nfiguration Identification

C : nfiguration Verification and Auditing

D : nfiguration Status Accounting

Answer: A

Question 5

Certification and Accreditation (C&A or CnA) is a process for implementing information security. It is a systematic procedure for evaluating, describing, testing, and authorizing systems prior to or after a system is in operation. Which of the following statements are true about Certification and Accreditation? Each correct answer represents a complete solution. Choose two.

A : creditation is a comprehensive assessment of the management, operational, and technical security controls in an information system

B : creditation is the official management decision given by a senior agency official to authorize operation of an information system

C : rtification is a comprehensive assessment of the management, operational, and technical security controls in an information system.

D : rtification is the official management decision given by a senior agency official to authorize operation of an information system.

Answer: B,C

Page: 1 / 44

Total 220 Questions | Updated On: Jan 08, 2025

Add To Cart