Home > Systems Security Certified Practitioner (SSCP) > Quizzes > SSCP: Auditing and Management Processes
SSCP: Auditing and Management Processes
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 0% Most missed: “Security professionals within your organization recently completed a security au…”
SSCP: Auditing and Management Processes
Time left 00:00
20 Questions

1. Of the following choices, what is the best example of a log used as a deterrent for internal employees?
2. Of the following choices, what helps prevent unintended outages caused by system modifications?
3. What do you call a group of one or more logs used to re-create events leading up to and occurring during an incident?
4. Security professionals within your organization recently completed a security audit. Which of the following are valid steps to take after the audit is complete?
5. Your organization uses strong authentication and authorization mechanisms and has robust logging capabilities. Combined, what do these three elements provide?
6. Security professionals within your organization recently completed a security audit. Which of the following are valid steps to take after the audit is complete?
7. A badge reader records employee names, dates, and times when employees enter and exit a secure server room. An auditor reviewed the logs and noticed that they showed that many employees entered the room, but the logs do not show when all the employees exited the room. What does this indicate?
8. What type of control is an audit trail?
9. Which of the following statements best describes a benefit of using clipping levels?
10. An organization handles credit card data from customers on a regular basis. What provides the security objectives and requirements that the organization must follow?
11. What is the purpose of reviewing logs?
12. An accounting system ignores logon failures until an account has three logon failures within a 30-minute period. It then generates an alert. What is the accounting system using?
13. Of the following choices, what is an example of an auditable event logged in an operating system
14. A badge reader records employee names, dates, and times when employees enter and exit a secure server room. An auditor reviewed the logs and noticed that they showed that many employees entered the room, but the logs do not show when all the employees exited the room. What does this indicate?
15. Of the following choices, what is an example of an auditable event logged in an operating system
16. Application developers are currently testing a new application that salespeople can use while traveling. The application works when it
17. You suspect that many internal systems may be part of a botnet. What log would you review to verify your suspicions?
18. Which of the following are valid methods used for configuration control?
19. Which of the following are valid methods used for configuration control?
20. You suspect that many internal systems may be part of a botnet. What log would you review to verify your suspicions?