ISC ISSEP Actual Free Exam Questions & Community Discussion

  • Exam Code/Number: ISSEP
  • Exam Name/Title: Information Systems Security Engineering Professional Practice Test
  • Certification Provider: ISC
  • Corresponding Certification: ISC Certification
  • Exam Questions: 210
  • Updated On: May 28, 2026
Page: 4 / 17
Total 210 questions
Which of the following categories of system specification describes the technical requirements that cover a service, which is performed on a component of the system
Correct Answer: B Vote an answer
Which of the following processes describes the elements such as quantity, quality, coverage, timelines, and availability, and categorizes the different functions that the system will need to perform in order to gather the documented missionbusiness needs
Correct Answer: B Vote an answer
Which of the following individuals informs all C&A participants about life cycle actions, security requirements, and documented user needs
Correct Answer: B Vote an answer
Which of the CNSS policies describes the national policy on certification and accreditation of national security telecommunications and information systems
Correct Answer: A Vote an answer
NIST SP 800-53A defines three types of interview depending on the level of assessment conducted. Which of the following NIST SP 800-53A interviews consists of informal and ad hoc interviews
Correct Answer: B Vote an answer
Which of the following organizations incorporates building secure audio and video communications equipment, making tamper protection products, and providing trusted microelectronics solutions
Correct Answer: A Vote an answer
The Phase 2 of DITSCAP C&A is known as Verification. The goal of this phase is to obtain a fully integrated system for certification testing and accreditation. What are the process activities of this phase Each correct answer represents a complete solution. Choose all that apply.
Correct Answer: A,B,D,E Vote an answer
Which of the following email lists is written for the technical audiences, and provides weekly summaries of security issues, new vulnerabilities, potential impact, patches and workarounds, as well as the actions recommended to mitigate risk
Correct Answer: C Vote an answer
In which of the following DIACAP phases is residual risk analyzed
Correct Answer: D Vote an answer
Which of the following individuals is responsible for the oversight of a program that is supported by a team of people that consists of, or be exclusively comprised of contractors
Correct Answer: A Vote an answer
Which of the following Net-Centric Data Strategy goals are required to increase enterprise and community data over private user and system data Each correct answer represents a complete solution. Choose all that apply.
Correct Answer: C,D Vote an answer
Which of the following types of cryptography defined by FIPS 185 describes a cryptographic algorithm or a tool accepted as a Federal Information Processing Standard
Correct Answer: B Vote an answer
Which of the following types of cryptography defined by FIPS 185 describes a cryptographic algorithm or a tool accepted by the National Security Agency for protecting sensitive, unclassified information in the systems as stated in Section 2315 of Title 10, United States Code
Correct Answer: D Vote an answer
Page: 4 / 17
Total 210 questions
0
0
0
10