CC ISC CC - Certified in Cybersecurity Free Practice Exam Questions (2025 Updated)

What is the process of verifying a users identity called?

Which one of the following controls is not particularly effective against the insider threat?

The Bell and LaPadula access control model is a form of

Communication between end systems is encrypted using a key, often known as________?

A security practitioner who needs step-by-step instructions to complete a provisioning task

A Hacker launched a specific attack to exploit a known system vulnerability. What term best describes this situation?

Which of these tool is commonly used to crack passwords

The last phase in the data security cycle is

The prevention of authorized access to resources or the delaying of time-critical operations. (Time-critical may be milliseconds or it may be hours, depending upon the service provided.)

In information systems terms, the activities necessary to restore IT and communications services of an organization during and after an outage

A Company IT system experienced a system crash that result in a loss of data. What term best describes this event?

Example of Deterrent controls

What is the purpose of defense in depth in information security

What security feature used in HTTPS

The common term used to describe the mechanisms that control the temperature and humidity in a data center

A portion of the organization's network that interfaces directly with the outside world; typically, this exposed area has more security controls and restrictions than the rest of the internal IT environment.

Which of the following physical controls is used to protect against eavesdropping and data theft through electromagnetic radiation

What goal of security is enhanced by a strong business continuity program?

The process of running a simulated instances of a computer system in a layer abstracted from the underlying hardware server or workstation