ISSMP Exam Questions and Answers Latest Update 2025 Graded A+
Security Mgr - Answers <D4 M2.19>
Responsible for creating & sustaining Incident Mgt Prog.
Not necessary the individual for conducting / leading incident response.
Rules of Evidence - Answers Rules governing the admissibility of evidence in trial courts.
Legal Hold - Answers <D4 M3.7>
- or Preservation order, is an organisation process to retain data relevant to a legal action.
- May temp suspend normal org retention policies to ensure relevant data may be available for legal
discovery process. (e-discovery)
Incident Mgt Process - Answers <D4 M2.10>
1. Preparation
2. Detection & Analysis
3. Containment,Eradication & Recovery
4. Post Incident Activity
Business Continuity Plan - Answers <D5 M1.3>
- Provides procedures for sustaining an or mission/business process during / after disruption
Business Continuity Plan (BCP) - Answers <D5 M1.3>
- Provides procedure for sustaining an org's mission / business processes during & after a disruption.
Reconstitution Phase in BCP & DR - Answers - Pri Focus
-- Restore critical ops & transition back to normal ops
Recovery Time Obj (RTO) - Answers <D5 M1.7>
- The max time to restore operations to avoid consequences that exceed business risk tolerance.
-- BIA is crucial to define RTO for business function / service
Recovery Point Obj (RPO) - Answers <D5 M1.7>
- The precise pt in time to recover the system
-- Heavily influenced by BIA results
, -- From the failure to the last data backup.
Maximum Tolerable Outage (MTO) - Answers - It is the maximum amount of time a system or resource
can remain unavailable before its loss starts to have an unacceptable impact on the goals or the survival
of an organisation
- The max amt of time ur business can tolerate operating at a lower than usual processing amt
Contingency Plan - Answers - A specific type of recovery plan that outlines the steps and procedures
necessary to address unforeseen events or incidents that may disrupt business operations, such as
natural disasters, cyber-attacks, power outages, or other emergencies.
- Designed to mitigate the impact of the event and minimize downtime, loss of data, and financial losses.
- Typically include detailed instructions and procedures that are specific to the type of incident or event,
including steps to take before, during, and after the event to ensure business continuity.
-- May also include contact information for key personnel, emergency services, and vendors, as well as
specific communication protocols to keep stakeholders informed and updated.
Critical IT recovery strategies - Answers Data Backups
-- Enables restoration
Disaster Recovery Plan (DRP) - Answers - A subset of a BCP that specifically focuses on restoring IT
systems and data in the event of a disruption or failure.
- DRPs typically include procedures for data backup, restoration, and recovery, as well as specific
recovery time objectives (RTOs) and recovery point objectives (RPOs).
Continuity Of Operation plan (COOP) - Answers <D5 M1.3>
- Provides procedure for restoring an org essential function to an alt site for up to 30 days b4 returning
normal operation.
- COOP is a temp business relocation and those functions that do not require relocation is not
addressed.
Disaster Recovery / Response Plan (DRP) - Answers <D5 M1.3>
- Applies to physical major disruption to services that may damage / deny access to pri infrastructure
and/or equipment for an extended period.
- An info system / network focused plan desined to restore operability of target system at alt site.
Security Mgr - Answers <D4 M2.19>
Responsible for creating & sustaining Incident Mgt Prog.
Not necessary the individual for conducting / leading incident response.
Rules of Evidence - Answers Rules governing the admissibility of evidence in trial courts.
Legal Hold - Answers <D4 M3.7>
- or Preservation order, is an organisation process to retain data relevant to a legal action.
- May temp suspend normal org retention policies to ensure relevant data may be available for legal
discovery process. (e-discovery)
Incident Mgt Process - Answers <D4 M2.10>
1. Preparation
2. Detection & Analysis
3. Containment,Eradication & Recovery
4. Post Incident Activity
Business Continuity Plan - Answers <D5 M1.3>
- Provides procedures for sustaining an or mission/business process during / after disruption
Business Continuity Plan (BCP) - Answers <D5 M1.3>
- Provides procedure for sustaining an org's mission / business processes during & after a disruption.
Reconstitution Phase in BCP & DR - Answers - Pri Focus
-- Restore critical ops & transition back to normal ops
Recovery Time Obj (RTO) - Answers <D5 M1.7>
- The max time to restore operations to avoid consequences that exceed business risk tolerance.
-- BIA is crucial to define RTO for business function / service
Recovery Point Obj (RPO) - Answers <D5 M1.7>
- The precise pt in time to recover the system
-- Heavily influenced by BIA results
, -- From the failure to the last data backup.
Maximum Tolerable Outage (MTO) - Answers - It is the maximum amount of time a system or resource
can remain unavailable before its loss starts to have an unacceptable impact on the goals or the survival
of an organisation
- The max amt of time ur business can tolerate operating at a lower than usual processing amt
Contingency Plan - Answers - A specific type of recovery plan that outlines the steps and procedures
necessary to address unforeseen events or incidents that may disrupt business operations, such as
natural disasters, cyber-attacks, power outages, or other emergencies.
- Designed to mitigate the impact of the event and minimize downtime, loss of data, and financial losses.
- Typically include detailed instructions and procedures that are specific to the type of incident or event,
including steps to take before, during, and after the event to ensure business continuity.
-- May also include contact information for key personnel, emergency services, and vendors, as well as
specific communication protocols to keep stakeholders informed and updated.
Critical IT recovery strategies - Answers Data Backups
-- Enables restoration
Disaster Recovery Plan (DRP) - Answers - A subset of a BCP that specifically focuses on restoring IT
systems and data in the event of a disruption or failure.
- DRPs typically include procedures for data backup, restoration, and recovery, as well as specific
recovery time objectives (RTOs) and recovery point objectives (RPOs).
Continuity Of Operation plan (COOP) - Answers <D5 M1.3>
- Provides procedure for restoring an org essential function to an alt site for up to 30 days b4 returning
normal operation.
- COOP is a temp business relocation and those functions that do not require relocation is not
addressed.
Disaster Recovery / Response Plan (DRP) - Answers <D5 M1.3>
- Applies to physical major disruption to services that may damage / deny access to pri infrastructure
and/or equipment for an extended period.
- An info system / network focused plan desined to restore operability of target system at alt site.
