CISSP 2023 Practice Questions (Scenario-Based) - Domain 2: Asset Security
Вставка
- Опубліковано 18 вер 2024
- Are you preparing for the CISSP exam and tackling Domain 2 - Asset Security? Look no further! In this video, we've covered with a comprehensive set of CISSP Domain 2 scenario based questions and answers to supercharge your exam preparation.
Domain 2, known as "Asset Security," focuses on understanding and managing the security of your organization's assets, including information and physical assets. It's a critical area of knowledge for CISSP candidates, and mastering it is key to passing the exam.
CISSP Flash Cards - • CISSP Flash Cards: Mas...
CISSP Practice Questions Playlist - youtu.be/playl...
Domain 1 - • CISSP 2023 Practice Qu...
Domain 2 - • CISSP 2023 Practice Qu...
Domain 3 - • CISSP 2023 Practice Qu...
Domain 4 - • CISSP 2023 Practice Qu...
#CISSP #CISSPDomain2 #Cybersecurity #InfoSec #Certification #ExamPrep
🌐 Follow us on Twitter: / infoscguardian
📷 Follow us on Instagram: / infosecguardians
👍 Like us on Facebook: / 623146913044461
🌐 Linkedin: / infosecguardians
Thank you for this very good video learning from your channel. Mohammed from Yemen.
Thanks, Mohammed! Best wishes to you and your family.
I liked question 6, it made me think. Well done, keep it up 👍
6 isn’t a good question. Wiping is considered clearing and there can be data remnants. Therefore the actual answer would be A.
yes, i also agree, Option should be "A" more over question does not dictate to donate computer
Agree too, wiping data in not enough to securely erase them. Or you must specify how data are erased depending of the support (HDD or SSD)
Thanks for your review.
This is a real world question and you may appreciate the common practice.
Here's how Option B stands as a potential approach:
Data Wipe: Performing a data wipe is a standard practice to remove all data from a storage device, including servers. While it's true that data remnants may remain after a standard wipe, using specialized wiping software that complies with recognized standards such as NIST SP 800-88 for data sanitation can significantly reduce the risk of data recovery.
Secure Deletion of Operating System: Securely deleting the operating system ensures that no residual data is left on the server's storage devices. This step is crucial to prevent any potential data recovery efforts from accessing sensitive information.
Donation to a Local School: Donating the server to a local school after performing the above steps can be a socially responsible and environmentally friendly way to dispose of the server. However, it's essential to ensure that the school understands the nature of the donation and agrees to handle the server appropriately.
While physically destroying the server (Option A) is a more secure method, it may not be the most environmentally friendly option. In cases where environmental concerns are a priority, securely wiping the data and donating the server to a trusted organization can be a viable alternative.
@@InfoSecGuardians Right. But the question doesn't mention the company is environmentally minded. The CISSP is about choosing the BEST option to solving the problem/in the best interest of the business. Proper physical destruction is the only sure way that there will be no way data can be recovered.
I believe the correct answer is A. The question does not mention the company's environmental friendliness or any aspect of Corporate Social Responsibility.