A database administrator is asked by a high-ranking member of management to perform specific changes to the accounting system database. The administrator is specifically instructed to not track or evidence the change in a ticket. Which of the following is the BEST course of action?
Correct Answer: D
According to the CISSP CBK Official Study Guide, the best course of action for the database administrator in this scenario is to inform the audit committee or internal audit directly using the corporate whistleblower process. A whistleblower is a person who reports or exposes any wrongdoing, fraud, corruption, or illegal activity within an organization to the appropriate authorities or parties. A whistleblower process is a mechanism that enables and protects the whistleblowers from any retaliation or discrimination, and ensures that their reports are handled properly and confidentially. The database administrator should inform the audit committee or internal audit directly using the corporate whistleblower process, as this would demonstrate their professional ethics and responsibility, as well as their compliance with the organizational policies and standards. The database administrator should not ignore the request and do not perform the change, as this would be unprofessional and irresponsible, and may also expose them to potential pressure or threats from the high-ranking member of management. The database administrator should not perform the change as requested, and rely on the next audit to detect and report the situation, as this would be unethical and illegal, and may also compromise the integrity and reliability of the accounting system database. The database administrator should not perform the change, but create a change ticket regardless to ensure there is complete traceability, as this would be dishonest and risky, and may also create a conflict or discrepancy with the high-ranking member of management.
CISSP Exam Question 72
Wi-Fi Protected Access 2 (WPA2) provides users with a higher level of assurance that their data will remain protected by using which protocol?
Correct Answer: D
Wi-Fi Protected Access 2 (WPA2) provides users with a higher level of assurance that their data will remain protected by using Extensible Authentication Protocol (EAP). WPA2 is a security standard for wireless networks that encrypts the data transmitted over the network using Advanced Encryption Standard (AES). EAP is a framework that supports multiple authentication methods for wireless networks, such as passwords, certificates, tokens, or biometrics. EAP provides users with a higher level of assurance that their data will remain protected by using WPA2, as it verifies the identity and credentials of the users and the network, and establishes a secure and mutual authentication process. Secure Shell (SSH), Internet Protocol Security (IPsec), or Secure Sockets Layer (SSL) are not protocols that are used by WPA2 to provide users with a higher level of assurance that their data will remain protected. SSH is a protocol that provides secure and encrypted remote access to a system or a network. IPsec is a protocol that provides secure and encrypted communication between two systems or networks over the internet. SSL is a protocol that provides secure and encrypted communication between a web browser and a web server over the internet.
CISSP Exam Question 73
In the Software Development Life Cycle (SDLC), maintaining accurate hardware and software inventories is a critical part of
Correct Answer: B
CISSP Exam Question 74
A company needs to provide employee access to travel services, which are hosted by a third- party service provider, Employee experience is important, and when users are already authenticated, access to the travel portal is seamless. Which of the following methods is used to share information and grant user access to the travel portal?
Correct Answer: A
The method that is used to share information and grant user access to the travel portal is Security Assertion Markup Language (SAML) access. SAML is a standard and protocol that enables the exchange of authentication and authorization information between different domains or entities, such as a service provider (SP) and an identity provider (IdP). SAML access can provide a seamless user experience, as it allows the users to access multiple services or resources from different domains, using a single or federated identity, without having to reauthenticate or reauthorize each time. SAML access can also enhance the security and privacy of the user information, as it does not require the sharing or storing of the user credentials or attributes between the domains, but rather relies on the digital signatures and encryption of the SAML assertions or messages. SAML access is suitable for the scenario where a company needs to provide employee access to travel services, which are hosted by a third-party service provider, as it can enable the employees to access the travel portal, using their existing company identity, after they are already authenticated by the company domain.
CISSP Exam Question 75
Which of the following is the PRIMARY issue when analyzing detailed log information?
Correct Answer: B
The primary issue when analyzing detailed log information is that timely review of the data is potentially difficult. Log information is the record of events or activities that occur on a system or a network. Log information can provide valuable insights into the performance, security, and usage of the system or network. However, log information can also be voluminous, complex, and heterogeneous, making it challenging to review and analyze in a timely manner. Without proper tools and techniques, log analysis can be time-consuming, resource-intensive, and error-prone.
Newest CISSP Exam PDF Dumps shared by Actual4test.com for Helping Passing CISSP Exam! Actual4test.com now offer the updated CISSP exam dumps, the Actual4test.com CISSP exam questions have been updated and answers have been corrected get the latest Actual4test.com CISSP pdf dumps with Exam Engine here: