SSCP: Security Operations
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 25% Most missed: “Which of the following is an international standard that provides a framework to…”
SSCP: Security Operations
Time left 00:00
20 Questions

1. Which of the following methods will reliably remove all data from a backup tape?
2. An organization wants to reduce risks associated with proprietary data transmitted over the network. What can it do in its data management policy to achieve this objective?
3. Of the following choices, what best describes a tuple?
4. A company wants to reduce the amount of space used to store files used and shared by employees. What can it use to reduce the amount of storage space used?
5. Which of the following EALs indicates a system was methodically designed, tested, and reviewed, and is the level of assurance assigned to many commercial operating systems?
6. Which of the following is an international standard that provides a framework to evaluate the security of IT systems?
7. An employee makes unauthorized changes to data as he is entering it. What is this?
8. A database includes information on customers. This information can be used to distinguish or trace a customer
9. The CEO of a publicly held company in the United States is required to verify the accuracy of a company
10. Users within an organization have recently sent sensitive data outside the organization in e-mail attachments. Management believes this was an accident, but they want to prevent a recurrence. Which of the following is the best method to do so?
11. Who is responsible for classifying data?
12. Which of the following is a virtual table and allows a user access to a limited amount of data within a table?
13. Which of the following provides the best confidentiality protection for data at rest?
14. Which of the following is a secure method of sanitizing optical media?
15. An attacker has collected several pieces of unclassified information to deduce a conclusion. What is this called?
16. Within the U.S. government, who can formally approve a system for operation at a specific level of risk?
17. A database includes health-related information on employees of a U.S. organization. Management wants to ensure it protects this data and complies with relevant laws. Of the following choices, which one identifies the regulation they should follow?
18. Of the following choices, what is a primary task to accomplish in the disposal phase of a system
19. A U.S. company collects information on customers and users around the world and stores much of it in databases in the United States. Management wants to ensure the company is complying with relevant laws in the EU. Which of the following is the most relevant law?
20. Of the following choices, what type of data requires the least amount of protection?