Home > Microsoft > Quizzes > CISA Domain 5: Protection of Information Asset
CISA Domain 5: Protection of Information Asset
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 28% Most missed: “An organization suspects one of its employees of a security violation regarding …”
CISA Domain 5: Protection of Information Asset
Time left 00:00
25 Questions

1. The term “tailgating” most often refers to:
2. The best time to assign roles and responsibilities for computer security incident response is:
3. Which U.S. government agency enforces retail organizations’ information privacy policy?
4. All of the following tools are used to detect changes in static files except:
5. A browser contacts a web server and requests a web page. The web server responds with a status code 200. What is the meaning of this status code?
6. A CIO is investigating the prospect of a hosting center for its IT infrastructure. A specific hosting center claims to have “N+1 HVAC Systems.” What is meant by this term?
7. Chain of custody is employed in which business process?
8. The entity that accepts requests for new public keys in a PKI is known as the:
9. What is the appropriate consequence of SOC operators declaring incidents that turn out to be false positives?
10. Which of the following is the best policy for a security awareness training course?
11. Which of the following tools is considered a search engine that can be used to list vulnerabilities in devices?
12. The default principle in the European General Data Protection Regulation for marketing communications from organizations to citizens is:
13. An organization suspects one of its employees of a security violation regarding the use of their workstation. The workstation, a laptop computer that is powered down, has been delivered to a forensic expert. What is the first thing the expert should do?
14. The primary advantage of a firewall on a laptop computer is:
15. Guessing that an intended victim has a particular online banking session open, an attacker attempts to trick the victim into clicking on a link that will attempt to execute a transaction on the online banking site. This type of an attack is known as:
16. According to the European General Data Protection Regulation (GDPR), what is the requirement for organizations’ use of a Data Protection Officer (DPO)?
17. A security leader needs to develop a data classification program. After developing the data classification and handling policy, what is the best next step to perform?
18. All of the following are appropriate uses of digital signatures except:
19. An organization that issues digital certificates recently discovered that a digital certificate was issued to an unauthorized party. What is the appropriate response?
20. An auditor has completed an audit of an organization’s use of a tool that generates SSL certificates for its external web sites. The auditor has determined that key management procedures are insufficient and that split custody of the key generation procedure is required. How might this be implemented?
21. What is the biggest risk associated with access badges that show the name of the organization?
22. The general counsel is becoming annoyed with notifications of minor security events occurring in the organization. This is most likely due to:
23. A new information security manager has examined the systems in the production environment and has found that their security-related configurations are inadequate and inconsistent. To improve this situation, the security manager should create a:
24. An organization is seeking to establish a protocol standard for federated authentication. Which of the following protocols is least likely to be selected?
25. A URL starting with shttp:// signifies what technology?

⚡ Recently practiced quizzes in this topic
Live quiz activity
Microsoft 365 Fundamentals Certification Exam MD-100: Windows 10 Exam AZ-300: Microsoft Azure Architect Technologies - Practice Test 2 Exam MS-100: Microsoft 365 Identity and Services MS-900: Microsoft 365 Fundamentals Exam Exam MD-101: Managing Modern Desktops Windows Server Administration Windows 2008 Server Core Commands MS-900 O365 Fundamentals Exam MS-101: Microsoft 365 Mobility and Security
 
If you liked Fatskills, consider supporting us by checking out The Life Manuals You Never Got.

🌈  Our mission is to help improve your scores in any subject and exam withonline quizzes, practice tests, study guides, & advice for students. Since 2018.
About | Explore | User Guide | Topics | Subjects | Doubt Solver | Career Aptitude Test | Answers | Free Tools | What Should We Know?
Privacy | Terms |
Without work one finishes nothing. - Ralph Waldo Emerson
© 2026 Fatskills.com

All trademarks, logos and brand names are the property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, trademarks and brands does not imply endorsement.