FUNDAMENTAL INFORMATION SECURITY CHAPTER 14: INFORMATION SECURITY PROFESSIONAL CERTIFICATI, Exams of Information Security and Markup Languages

FUNDAMENTAL INFORMATION SECURITY CHAPTER 14: INFORMATION SECURITY PROFESSIONAL CERTIFICATIONS WITH CORRECTANSWERS.

Typology: Exams

2025/2026

Available from 03/03/2026

prof_mary012
prof_mary012 🇺🇸

895 documents

1 / 11

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
FUNDAMENTAL INFORMATION SECURITY
CHAPTER 14: INFORMATION SECURITY
PROFESSIONAL CERTIFICATIONS WITH
CORRECT ANSWERS.
Jonas is an experienced information security professional
with a specialized focus on evaluating computers for
evidence of criminal or malicious activity and recovering
data. Which GIAC certification would be most appropriate
for Jonas to demonstrate his abilities?
GIAC Systems and Network Auditor (GSNA)
GIAC Certified Forensic Examiner (GCFE)
GIAC Certified Firewall Analyst (GCFW)
GIAC Certified Penetration Tester (GPEN) -
Correct Answers - GIAC Certified Forensic Examiner
(GCFE)
The HealthCare Certified Information Security and Privacy
Practitioner (HCISPP) credential recognizes the
knowledge and skills necessary to perform and conduct
security and privacy work for health care organizations.
True
False -
Correct Answers - True
A certification is an official statement that validates that a
person has satisfied specific job requirements.
True
False -
Correct Answers - True
The CISSP-ISSEP concentration requires that a candidate
demonstrate two years of professional experience in the
area of architecture.
pf3
pf4
pf5
pf8
pf9
pfa

Partial preview of the text

Download FUNDAMENTAL INFORMATION SECURITY CHAPTER 14: INFORMATION SECURITY PROFESSIONAL CERTIFICATI and more Exams Information Security and Markup Languages in PDF only on Docsity!

FUNDAMENTAL INFORMATION SECURITY

CHAPTER 14: INFORMATION SECURITY

PROFESSIONAL CERTIFICATIONS WITH

CORRECT ANSWERS.

Jonas is an experienced information security professional with a specialized focus on evaluating computers for evidence of criminal or malicious activity and recovering data. Which GIAC certification would be most appropriate for Jonas to demonstrate his abilities? GIAC Systems and Network Auditor (GSNA) GIAC Certified Forensic Examiner (GCFE) GIAC Certified Firewall Analyst (GCFW) GIAC Certified Penetration Tester (GPEN) - Correct Answers - GIAC Certified Forensic Examiner (GCFE) The HealthCare Certified Information Security and Privacy Practitioner (HCISPP) credential recognizes the knowledge and skills necessary to perform and conduct security and privacy work for health care organizations. True False - Correct Answers - True A certification is an official statement that validates that a person has satisfied specific job requirements. True False - Correct Answers - True The CISSP-ISSEP concentration requires that a candidate demonstrate two years of professional experience in the area of architecture.

True False - Correct Answers - False Which of the following is NOT a role described in DoD Directive 8140, which covers cyber security training? Attack Protect and defend Operate and maintain Investigate - Correct Answers - Attack What certification organization began as an offshoot of the SANS Institute training programs? International Information Systems Security Certification Consortium, Inc. (ISC) CompTIA Certified Internet Webmaster (CIW) Global Information Assurance Certification (GIAC) - Correct Answers - Global Information Assurance Certification (GIAC) DoD Directive 8570.01 is a voluntary certification requirement. True False - Correct Answers - False One requirement of the GIAC Security Expert (GSE) credential is that candidates must hold three GIAC credentials, with two of the credentials being Gold. True False - Correct Answers - True

Software Engineering Institute - Carnegie Mellon University The International Society of Forensic Computer Examiners

  • Correct Answers - International Council of E-Commerce Consultants (EC-Council) A GIAC credential holder may submit a technical paper that covers an important area of information security. If the paper is accepted, it adds the Gold credential to the base GIAC credential. True False - Correct Answers - True DoD and NSA have adopted several training standards to serve as a pathway to satisfy Directive 8140. Although they are called standards, they are really training requirements for specific job responsibilities. True False - Correct Answers - True Rod has been a Certified Information Systems Security Professional (CISSP) for 10 years. He would like to earn an advanced certification that demonstrates his ability in information security architecture. Which of the following CISSP concentrations would meet Rod's needs? CISSP-ISASP CISSP-ISSEP CISSP-ISSMP CISSP-ISSAP - Correct Answers - CISSP-ISSAP Ben is working toward a position as a senior security administrator and would like to earn his first International

Information Systems Security Certification Consortium, Inc. (ISC) 2 certification. Which certification is most appropriate for his needs? Systems Security Certified Practitioner (SSCP) Certified Information Systems Security Professional (CISSP) Certified Secure Software Lifecycle Professional (CSSLP) Certified Cloud Security Professional (CCSP) - Correct Answers - Systems Security Certified Practitioner (SSCP) Richard would like to earn a certification that demonstrates his ability to manage the information security function. What certification would be most appropriate for Richard? Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified in the Governance of Enterprise IT (CGEIT) Certified in Risk and Information Systems Control (CRISC)

  • Correct Answers - Certified Information Security Manager (CISM) Which of the following certifications is considered the flagship Information Systems Security Certification Consortium, Inc. (ISC) 2 certification and the gold standard for information security professionals? Certified Authorization Professional (CAP) Certified Cloud Security Professional (CCSP) Certified Information Systems Security Professional (CISSP) Systems Security Certified Practitioner (SSCP) - Correct Answers - Certified Information Systems Security Professional (CISSP)

How many domains of knowledge are covered by the Certified Information Systems Security Professional (CISSP) exam? 7 8 9 10 - Correct Answers - 8 Colin is a software developer. He would like to earn a credential that demonstrates to employers that he is well educated on software security issues. What certification would be most suitable for this purpose? Certified Information Systems Security Professional (CISSP) Certified Secure Software Lifecycle Professional (CSSLP) Certified Cyber Forensics Professional (CCFP) HealthCare Certified Information Security Privacy Practitioner (HCISPP) - Correct Answers - Certified Secure Software Lifecycle Professional (CSSLP) RSA is a global provider of security, risk, and compliance solutions for enterprise environments. True False - Correct Answers - True Which of the following is NOT a role described in DoD Directive 8140, which covers cyber security training? Attack Protect and defend Operate and maintain Investigate - Correct Answers - Attack

What certification focuses on information systems audit, control, and security professionals? Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified in the Governance of Enterprise IT (CGEIT) Certified in Risk and Information Systems Control (CRISC)

  • Correct Answers - Certified Information Systems Auditor (CISA) Cisco offers certifications only at the Associate, Professional, and Expert levels. True False - Correct Answers - False A common method for identifying what skills a security professional possesses is his or her level of certification. True False - Correct Answers - True What organization offers a variety of security certifications that are focused on the requirements of auditors? International Information Systems Security Certification Consortium, Inc. (ISC) CompTIA Global Information Assurance Certification (GIAC) ISACA - Correct Answers - ISACA One requirement of the GIAC Security Expert (GSE) credential is that candidates must hold three GIAC credentials, with two of the credentials being Gold. True False - Correct Answers - True

Correct Answers - Security+ Which of the following certifications cannot be used to satisfy the security credential requirements for the advanced Certified Internet Webmaster (CIW) certifications? Security+ GIAC Certified Firewall Analyst (GCFW) Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) - Correct Answers - Certified Information Security Manager (CISM) The Certified Cloud Security Professional (CCSP) certification was created by both (ISC) 2 and the Cloud Security Alliance (CSA). True False - Correct Answers - True Information Systems Security Certification Consortium, Inc. (ISC)2 is the baseline for federal and DoD work-role definitions. True False - Correct Answers - False The Certified Secure Software Lifecycle Professional (CSSLP) credential measures the knowledge and skills necessary for professionals involved in the process of authorizing and maintaining information systems. True

False - Correct Answers - False