Free Access to BCS.CISMP-V9.v2023-02-21.q35 with Valid Practice Test (Page 8)

Question 31

Which of the following testing methodologies TYPICALLY involves code analysis in an offline environment without ever actually executing the code?

A.Penetration Testing.
B.Dynamic Testing.
C.User Testing.
D.Static Testing.

Question 32

How does network visualisation assist in managing information security?

A.Visualisation software operates in a way that is rarely and thereby it is less prone to malware infection.
B.Visualisation can communicate large amounts of data in a manner that is a relatively simple way for people to analyse and interpret.
C.Visualisation provides structured tables and lists that can be analysed using common tools such as MS Excel.
D.Visualisation offers unstructured data that records the entirety of the data in a flat, filterable ftle format.

Question 33

Why have MOST European countries developed specific legislation that permits police and security services to monitor communications traffic for specific purposes, such as the detection of crime?

A.GDPR overrides all previous legislation on information handling, so new laws were needed to ensure authorities did not inadvertently break the law.
B.Under the European Convention of Human Rights, the interception of telecommunications represents an interference with the right to privacy.
C.Surveillance of a conversation or an online message by law enforcement agents was previously illegal due to the 1950 version of the Human Rights Convention.
D.Police could previously intercept without lawful authority any communications in the course of transmission through a public post or telecoms system.

Question 34

In a security governance framework, which of the following publications would be at the HIGHEST level?

A.Policy.
B.Guidelines
C.Procedures.
D.Standards

Question 35

When seeking third party digital forensics services, what two attributes should one seek when making a choice of service provider?

A.Formal certification to ISO/IEC 27001 and alignment with ISO 17025.
B.Clean credit references as well as international experience.
C.Appropriate company accreditation and staff certification.
D.Affiliation with local law enforcement bodies and local government regulations.

Question 31

Question 32

Question 33

Question 34

Question 35

Download PDF File