Written by students who passed Immediately available after payment Read online or as PDF Wrong document? Swap it for free 4.6 TrustPilot
logo-home
Exam (elaborations)

CSIA FINAL EXAM VERSION 1 - COMPLETE PRACTICE QUESTION WITH COMPLTE ANSWERS AND RATIONELS

Rating
-
Sold
-
Pages
69
Grade
A+
Uploaded on
27-06-2026
Written in
2025/2026

CSIA FINAL EXAM VERSION 1 - COMPLETE PRACTICE QUESTION WITH COMPLTE ANSWERS AND RATIONELS

Institution
CSIA CERTIFICATION
Course
CSIA CERTIFICATION

Content preview

CSIA FINAL EXAM VERSION 1 - COMPLETE
PRACTICE QUESTION WITH COMPLTE
ANSWERS AND RATIONELS




Section 1: Information Security Fundamentals (Questions
1-20)

Question 1:
What is the primary goal of the CIA triad in information
security?

A) Confidentiality, Integrity, Authentication
B) Confidentiality, Integrity, Availability
C) Confidentiality, Identity, Access
D) Control, Integrity, Availability

Correct Answer: B) Confidentiality, Integrity, Availability

Rationale: The CIA triad forms the foundation of information
security. Confidentiality ensures data is accessible only to
authorized users, Integrity ensures data accuracy and
trustworthiness, and Availability ensures systems and data
are accessible when needed. Authentication (option A) is a

,separate security concept, while options C and D incorrectly
substitute other terms.



Question 2:
Which type of attack involves intercepting and altering
communication between two parties without their knowledge?

A) Denial of Service
B) Man-in-the-Middle
C) Phishing
D) SQL Injection

Correct Answer: B) Man-in-the-Middle

Rationale: A Man-in-the-Middle (MITM) attack occurs when
an attacker secretly intercepts and potentially alters
communications between two parties. Denial of Service (A)
overwhelms systems, Phishing (C) is a social engineering
attack, and SQL Injection (D) targets databases.



Question 3:
What is the primary purpose of encryption?

A) To ensure data availability
B) To protect data confidentiality

,C) To verify user identity
D) To prevent physical theft

Correct Answer: B) To protect data confidentiality

Rationale: Encryption transforms readable data (plaintext)
into an unreadable format (ciphertext) to protect
confidentiality. While encryption can support other security
goals, its primary purpose is ensuring that unauthorized
parties cannot read sensitive information.



Question 4:
Which of the following is an example of a physical security
control?

A) Firewall
B) Biometric scanner
C) Intrusion Detection System
D) Antivirus software

Correct Answer: B) Biometric scanner

Rationale: Physical security controls are tangible measures
that protect physical assets. Biometric scanners (fingerprint
readers, retinal scanners) are physical devices that control
access to facilities or systems. Firewalls, IDS, and antivirus
are all logical/technical controls.

, Question 5:
What is the difference between a vulnerability and a threat?

A) A vulnerability is a potential danger, while a threat is a
weakness
B) A vulnerability is a weakness, while a threat is a potential
danger
C) They are the same thing
D) A vulnerability is always exploited

Correct Answer: B) A vulnerability is a weakness, while a
threat is a potential danger

Rationale: A vulnerability is a flaw or weakness in a system
that could be exploited, while a threat is a potential danger
that could exploit that vulnerability. For example, an
unpatched server (vulnerability) faces the threat of malware
infection.



Question 6:
Which security principle states that users should only have
the minimum privileges necessary to perform their job
functions?

Written for

Institution
CSIA CERTIFICATION
Course
CSIA CERTIFICATION

Document information

Uploaded on
June 27, 2026
Number of pages
69
Written in
2025/2026
Type
Exam (elaborations)
Contains
Questions & answers

Subjects

$20.49
Get access to the full document:

Wrong document? Swap it for free Within 14 days of purchase and before downloading, you can choose a different document. You can simply spend the amount again.
Written by students who passed
Immediately available after payment
Read online or as PDF

Get to know the seller

Seller avatar
Reputation scores are based on the amount of documents a seller has sold for a fee and the reviews they have received for those documents. There are three levels: Bronze, Silver and Gold. The better the reputation, the more your can rely on the quality of the sellers work.
Nursewilliams29 Teachme2-tutor
View profile
Follow You need to be logged in order to follow users or courses
Sold
67
Member since
2 year
Number of followers
35
Documents
1885
Last sold
3 months ago

5.0

769 reviews

5
753
4
7
3
7
2
0
1
2

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

Student with book image

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Working on your references?

Create accurate citations in APA, MLA and Harvard with our free citation generator.

Working on your references?

Frequently asked questions