Book Image

SSCP Systems Security Certified Practitioner Official Practice Tests

By : Mike Chapple, David Seidl
Book Image

SSCP Systems Security Certified Practitioner Official Practice Tests

By: Mike Chapple, David Seidl

Overview of this book

The SSCP certification is offered by the International Information System Security Certification Consortium (ISC)2. The SSCP is the entry-level credential in this series. With SSCP certification, you’ll meet the requirements of the Department of Defense for entry-level Information Assurance Technical (IAT I) roles, positioning you for a successful career in cybersecurity. This book's first seven chapters cover each of the seven domains on the SSCP exam with sixty or more questions per domain, so you can focus your study efforts exactly where you need more review. The book also contains two complete practice exams that you can use as time trials to assess your readiness for the SSCP and a future in the field of information assurance. By the end of the book, you would have strengthened your weak areas and reinforced your learning to ace the test and earn the certification.
Table of Contents (14 chapters)
2
Chapter 1 Access Controls (Domain 1)
3
Chapter 2 Security Operations and Administration (Domain 2)
4
Chapter 3 Risk Identification, Monitoring, and Analysis (Domain 3)
5
Chapter 4 Incident Response and Recovery (Domain 4)
6
Chapter 5 Cryptography (Domain 5)
7
Chapter 6 Network and Communications Security (Domain 6)
8
Chapter 7 Systems and Application Security (Domain 7)
9
Chapter 8 Practice Test 1
10
Chapter 9 Practice Test 2
11
Index
12
Advert
13
End User License Agreement

Chapter 2: Security Operations and Administration (Domain 2)

  1. B. Privacy is of the utmost concern when handling personally identifiable information (PII). PII includes any information that may be reasonably tied to a specific person. This would include street addresses, telephone numbers, and national ID numbers (such as Social Security numbers). Item codes, when not tied to a name or other identifier, would not constitute PII.

  2. D. While all of the items listed are components of a strong security program, periodic audits would provide Carl with the assurance that controls continue to operate effectively over the long term.

  3. A. The situation Darlene finds herself in is an ethical dilemma, and a code of ethics would be the best place to look for guidance. This situation is specific to her employer, so she should turn to her organization’s code of ethics, rather than the more general (ISC)2 Code of Ethics.

  4. B. Nondisclosure agreements (NDAs) protect the confidentiality...