Free ISC2 ISSEP Exam Questions

Become ISC2 Certified with updated ISSEP exam questions and correct answers

Page: 1 / 44

Total 220 Questions | Updated On: Jan 29, 2026

Add To Cart

Question 1

Which of the following is NOT an objective of the security program?

A : curity education

B : formation classification

C : curity organization

D : curity plan

Answer: D

Question 2

Your project has several risks that may cause serious financial impact should they happen. You have

studied the risk events and made some potential risk responses for the risk events but management

wants you to do more. They'd like for you to create some type of a chart that identified the risk

probability and impact with a financial amount for each risk event. What is the likely outcome of

creating this type of chart?

A : k response plan

B : antitative analysis

C : k response

D : ntingency reserve

Answer: D

Question 3

Part of your change management plan details what should happen in the change control system for your project. Theresa, a junior project manager, asks what the configuration management activities are for scope changes. You tell her that all of the following are valid configuration management activities except for which one?

A : nfiguration Item Costing

B : nfiguration Identification

C : nfiguration Verification and Auditing

D : nfiguration Status Accounting

Answer: A

Question 4

Which of the following persons in an organization is responsible for rejecting or accepting the residual risk for a system?

A : tem Owner

B : formation Systems Security Officer (ISSO)

C : ignated Approving Authority (DAA)

D : ief Information Security Officer (CISO)

Answer: C

Question 5

You work as a Network Administrator for uCertify Inc. You need to secure web services of your company in order to have secure transactions. Which of the following will you recommend for providing security?

A : TP

B : N

C : MIME

D : L

Answer: D

Page: 1 / 44

Total 220 Questions | Updated On: Jan 29, 2026

Add To Cart