ISC2 Exam ISSMP Topic 3 Question 14 Discussion

Actual exam question for ISC2's Information Systems Security Management Professional exam

Question #: 14
Topic #: 3

[All Information Systems Security Management Professional Questions]

Which of the following methods can be helpful to eliminate social engineering threat?

Each correct answer represents a complete solution. Choose three.

APassword policies

BVulnerability assessments

CData encryption

DData classification

Show Suggested Answer

Suggested Answer: A, B, D

The following methods can be helpful to eliminate social engineering threat.

Password policies

Vulnerability assessments

Data classification

Password policy should specify that how the password can be shared.

Company should implement periodic penetration and vulnerability assessments. These assessments usually consist of using known hacker tools and common hacker techniques to breach a network security. Social engineering should also be used for an accurate assessment.

Since social engineers use the knowledge of others to attain information, it is essential to have a data classification model in place that all employees know and follow. Data classification assigns level of sensitivity of company information. Each classification level specifies that who can view and edit data, and how it can be shared.

by Angella at May 04, 2022, 07:57 AM

Limited Time Offer

25%

Off

Get Premium ISSMP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!