Which of the following signatures watches for the connection attempts to well-known, frequently
attacked ports?

Configuration Management (CM) is an Information Technology Infrastructure Library (ITIL) IT Service
Management (ITSM) process. Configuration Management is used for which of the following?
1.To account for all IT assets
2.To provide precise information support to other ITIL disciplines
3.To provide a solid base only for Incident and Problem Management
4.To verify configuration records and correct any exceptions

Which of the following protocols are used to provide secure communication between a client and a
server over the Internet? Each correct answer represents a part of the solution. Choose two.

How can you calculate the Annualized Loss Expectancy (ALE) that may occur due to a threat?

Which of the following rate systems of the Orange book has no security controls?

Which of the following documents is described in the statement below?
“It is developed along with all processes of the risk management. It contains the results of the
qualitative risk analysis, quantitative risk analysis, and risk response planning.”

Which of the following authentication protocols provides support for a wide range of authentication
methods, such as smart cards and certificates?

Which of the following statements reflect the ‘Code of Ethics Preamble’ in the ‘(ISC)2 Code of
Ethics’?
Each correct answer represents a complete solution. Choose all that apply.

Which of the following test methods has the objective to test the IT system from the viewpoint of a
threat-source and to identify potential failures in the IT system protection schemes?

Which of the following options is an approach to restricting system access to authorized users?