Free ISC CISSP-ISSMP Practice Test & Real Exam Questions

Exam Code/Number: CISSP-ISSMP
Exam Name/Title: CISSP-ISSMP - Information Systems Security Management Professional
Certification Provider: ISC
Corresponding Certification: CISSP Concentrations

Exam Questions: 218
Updated On: May 31, 2026

Question #1

Which of the following protocols is used with a tunneling protocol to provide security?

A. EAP

B. IPSec

C. FTP

D. IPX/SPX

Discussion 0

Correct Answer: B Vote an answer

Question #2

You work as the Network Administrator for a defense contractor. Your company works with sensitive materials and all IT personnel have at least a secret level clearance. You are still concerned that one individual could perhaps compromise the network (intentionally or unintentionally) by setting up improper or unauthorized remote access. What is the best way to avoid this problem?

A. Implement least privileges.

B. Implement RBAC.

C. Implement separation of duties.

D. Implement three way authentication.

Discussion 0

Correct Answer: C Vote an answer

Question #3

What is a stakeholder analysis chart?

A. It is a matrix that documents the stakeholders' requirements, when the requirements were created, and when the fulfillment of the requirements took place..

B. It is a matrix that identifies who must communicate with whom.

C. It is a matrix that documents stakeholders' threats, perceived threats, and communication needs.

D. It is a matrix that identifies all of the stakeholders and to whom they must report to.

Discussion 0

Correct Answer: C Vote an answer

Question #4

Which of the following can be prevented by an organization using job rotation and separation of duties policies?

A. Collusion

B. Buffer overflow

C. Eavesdropping

D. Phishing

Discussion 0

Correct Answer: A Vote an answer

Question #5

Which of the following contract types is described in the statement below? "This contract type provides no incentive for the contractor to control costs and hence is rarely utilized."

A. Cost Plus Award Fee

B. Cost Plus Fixed Fee

C. Cost Plus Percentage of Cost

D. Cost Plus Incentive Fee

Discussion 0

Correct Answer: C Vote an answer

Question #6

Which of the following fields of management focuses on establishing and maintaining consistency of a system's or product's performance and its functional and physical attributes with its requirements, design, and operational information throughout its life?

A. Procurement management

B. Risk management

C. Configuration management

D. Change management

Discussion 0

Correct Answer: C Vote an answer

Question #7

What course of action can be taken by a party if the current negotiations fail and an agreement cannot be reached?

A. ZOPA

B. Bias

C. PON

D. BATNA

Discussion 0

Correct Answer: D Vote an answer

Question #8

Software Development Life Cycle (SDLC) is a logical process used by programmers to develop software. Which of the following SDLC phases meets the audit objectives defined below: System and data are validated. System meets all user requirements. System meets all control requirements.

A. Initiation

B. Definition

C. Programming and training

D. Evaluation and acceptance

Discussion 0

Correct Answer: D Vote an answer

Download Free ISC CISSP-ISSMP Demo

Simply submit your e-mail address below to get started with our free demo of your ISC CISSP-ISSMP exam.