Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors
  1. Home
  2. ISC
  3. SSCP

ISC SSCP System Security Certified Practitioner (SSCP) SSCP Exam Questions in PDF

Free ISC SSCP Dumps Questions (page: 3)

SSCP PDF — 1081 Questions

Which of the following exemplifies proper separation of duties?

  1. Operators are not permitted modify the system time.
  2. Programmers are permitted to use the system console.
  3. Console operators are permitted to mount tapes and disks.
  4. Tape operators are permitted to use the system console.

Answer(s): A

Explanation:

This is an example of Separation of Duties because operators are prevented from
modifying the system time which could lead to fraud. Tasks of this nature should be performed by they system administrators.
AIO defines Separation of Duties as a security principle that splits up a critical task among two or more individuals to ensure that one person cannot complete a risky task by himself.
The following answers are incorrect:
Programmers are permitted to use the system console. Is incorrect because programmers should not be permitted to use the system console, this task should be performed by operators. Allowing programmers access to the system console could allow fraud to occur so this is not an example of Separation of Duties..
Console operators are permitted to mount tapes and disks. Is incorrect because operators should be able to mount tapes and disks so this is not an example of Separation of Duties.
Tape operators are permitted to use the system console. Is incorrect because operators should be able to use the system console so this is not an example of Separation of Duties.


Reference:

OIG CBK Access Control (page 98 - 101)
AIOv3 Access Control (page 182)



Which of the following is not a logical control when implementing logical access security?

  1. access profiles.
  2. userids.
  3. employee badges.
  4. passwords.

Answer(s): C

Explanation:

Employee badges are considered Physical so would not be a logical control.
The following answers are incorrect:
userids. Is incorrect because userids are a type of logical control. access profiles. Is incorrect because access profiles are a type of logical control. passwords. Is incorrect because passwords are a type of logical control.



Which one of the following authentication mechanisms creates a problem for mobile users?

  1. Mechanisms based on IP addresses
  2. Mechanism with reusable passwords
  3. one-time password mechanism.
  4. challenge response mechanism.

Answer(s): A

Explanation:

Anything based on a fixed IP address would be a problem for mobile users because their location and its associated IP address can change from one time to the next. Many providers will assign a new IP every time the device would be restarted. For example an insurance adjuster using a laptop to file claims online. He goes to a different client each time and the address changes every time he connects to the ISP.
NOTE FROM CLEMENT:
The term MOBILE in this case is synonymous with Road Warriors where a user is contantly traveling and changing location. With smartphone today that may not be an issue but it would be an issue for laptops or WIFI tablets. Within a carrier network the IP will tend to be the same and would change rarely. So this question is more applicable to devices that are not cellular devices but in some cases this issue could affect cellular devices as well.
The following answers are incorrect:
mechanism with reusable password. This is incorrect because reusable password mechanism would not present a problem for mobile users. They are the least secure and change only at specific interval.
one-time password mechanism. This is incorrect because a one-time password mechanism would not present a problem for mobile users. Many are based on a clock and not on the IP address of the user.
challenge response mechanism. This is incorrect because challenge response mechanism would not present a problem for mobile users.



Organizations should consider which of the following first before allowing external access to their LANs via the Internet?

  1. plan for implementing workstation locking mechanisms.
  2. plan for protecting the modem pool.
  3. plan for providing the user with his account usage information.
  4. plan for considering proper authentication options.

Answer(s): D

Explanation:

Before a LAN is connected to the Internet, you need to determine what the access controls mechanisms are to be used, this would include how you are going to authenticate individuals that may access your network externally through access control.
The following answers are incorrect:
plan for implementing workstation locking mechanisms. This is incorrect because locking the workstations have no impact on the LAN or Internet access.
plan for protecting the modem pool. This is incorrect because protecting the modem pool has no impact on the LAN or Internet access, it just protects the modem.
plan for providing the user with his account usage information. This is incorrect because the question asks what should be done first. While important your primary concern should be focused on security.



Which of the following would assist the most in Host Based intrusion detection?

  1. audit trails.
  2. access control lists.
  3. security clearances.
  4. host-based authentication.

Answer(s): A

Explanation:

To assist in Intrusion Detection you would review audit logs for access violations.
The following answers are incorrect:
access control lists. This is incorrect because access control lists determine who has access to what but do not detect intrusions.
security clearances. This is incorrect because security clearances determine who has access to what but do not detect intrusions.
host-based authentication. This is incorrect because host-based authentication determine who have been authenticated to the system but do not dectect intrusions.



Viewing page 3 of 216

Share your comments for ISC SSCP exam with other users:

S
sushant
6/28/2023 4:38:00 AM

please upoad

EUROPEAN UNION
J
John
8/7/2023 12:09:00 AM

has anyone recently attended safe 6.0 certification? is it the samq question from here.

Anonymous
B
Blessious Phiri
8/14/2023 3:49:00 PM

expository experience

Anonymous
C
concerned citizen
12/29/2023 11:31:00 AM

52 should be b&c. controller failure has nothing to do with this type of issue. degraded state tells us its a raid issue, and if the os is missing then the bootable device isnt found. the only other consideration could be data loss but thats somewhat broad whereas b&c show understanding of the specific issues the question is asking about.

UNITED STATES
D
deedee
12/23/2023 5:10:00 PM

great help!!!

UNITED STATES
S
Samir
8/1/2023 3:07:00 PM

very useful tools

UNITED STATES
S
Saeed
11/7/2023 3:14:00 AM

looks a good platform to prepare az-104

Anonymous
M
Matiullah
6/24/2023 7:37:00 AM

want to pass the exam

Anonymous
S
SN
9/5/2023 2:25:00 PM

good resource

UNITED STATES
Z
Zoubeyr
9/8/2023 5:56:00 AM

question 11 : d

FRANCE
U
User
8/29/2023 3:24:00 AM

only the free dumps will be enough for pass, or have to purchase the premium one. please suggest.

Anonymous
C
CW
7/6/2023 7:37:00 PM

good questions. thanks.

Anonymous
F
Farooqi
11/21/2023 1:37:00 AM

good for practice.

INDIA
I
Isaac
10/28/2023 2:30:00 PM

great case study

UNITED STATES
M
Malviya
2/3/2023 9:10:00 AM

the questions in this exam dumps is valid. i passed my test last monday. i only whish they had their pricing in inr instead of usd. but it is still worth it.

INDIA
R
rsmyth
5/18/2023 12:44:00 PM

q40 the answer is not d, why are you giving incorrect answers? snapshot consolidation is used to merge the snapshot delta disk files to the vm base disk

IRELAND
K
Keny
6/23/2023 9:00:00 PM

thanks, very relevant

PERU
M
Muhammad Rawish Siddiqui
11/29/2023 12:14:00 PM

wrong answer. it is true not false.

SAUDI ARABIA
J
Josh
7/10/2023 1:54:00 PM

please i need the mo-100 questions

Anonymous
V
VINNY
6/2/2023 11:59:00 AM

very good use full

Anonymous
A
Andy
12/6/2023 5:56:00 AM

very valid questions

Anonymous
M
Mamo
8/12/2023 7:46:00 AM

will these question help me to clear pl-300 exam?

UNITED STATES
M
Marial Manyang
7/26/2023 10:13:00 AM

please provide me with these dumps questions. thanks

Anonymous
A
Amel Mhamdi
12/16/2022 10:10:00 AM

in the pdf downloaded is write google cloud database engineer i think that it isnt the correct exam

FRANCE
A
Angel
8/30/2023 10:58:00 PM

i think you have the answers wrong regarding question: "what are three core principles of web content accessibility guidelines (wcag)? answer: robust, operable, understandable

UNITED STATES
S
SH
5/16/2023 1:43:00 PM

these questions are not valid , they dont come for the exam now

UNITED STATES
S
sudhagar
9/6/2023 3:02:00 PM

question looks valid

UNITED STATES
V
Van
11/24/2023 4:02:00 AM

good for practice

Anonymous
D
Divya
8/2/2023 6:54:00 AM

need more q&a to go ahead

Anonymous
R
Rakesh
10/6/2023 3:06:00 AM

question 59 - a newly-created role is not assigned to any user, nor granted to any other role. answer is b https://docs.snowflake.com/en/user-guide/security-access-control-overview

Anonymous
N
Nik
11/10/2023 4:57:00 AM

just passed my exam today. i saw all of these questions in my text today. so i can confirm this is a valid dump.

HONG KONG
D
Deep
6/12/2023 7:22:00 AM

needed dumps

INDIA
T
tumz
1/16/2024 10:30:00 AM

very helpful

UNITED STATES
N
NRI
8/27/2023 10:05:00 AM

will post once the exam is finished

UNITED STATES
AI Tutor 👋 I’m here to help!