Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CISSP All Questions

View all questions & answers for the CISSP exam
Go to Exam

Exam CISSP topic 1 question 163 discussion

Actual exam question from ISC's CISSP
Question #: 163
Topic #: 1
[All CISSP Questions]

Which of the following is the MOST common cause of system or security failures?

  • A. Lack of physical security controls
  • B. Lack of change control
  • C. Lack of logging and monitoring
  • D. Lack of system documentation
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by rdy4u at Oct. 28, 2022, 3:49 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
74gjd_37
Highly Voted 1 year, 2 months ago
Selected Answer: B
ISC2 identifies lack of change control as a common cause of security failures in its Common Body of Knowledge (CBK). It includes a section on Security Operations, which covers topics such as change management, configuration management, and incident management. Within this section, lack of change control is identified as a common cause of security failures. Additionally, many other sources in the field of information security also identify lack of change control as a common issue that can lead to security incidents.
upvoted 5 times
...
xxxBadManxxx
Most Recent 10 months ago
Selected Answer: C
C. Lack of logging and monitoring / you have to check the logs and monitor.
upvoted 1 times
...
maawar83
10 months, 3 weeks ago
I m leaning more towards C: System and Security "Failures" ---- unrecoverable The lack of logging and monitoring in a system poses significant security risks, including limited visibility into activities, delayed incident detection, challenges in incident investigation, non-compliance with regulations, and difficulties in forensic analysis. It also hampers threat hunting efforts, monitoring user activities, ensuring accountability, receiving timely alerts for anomalies, and detecting security baseline deviations. To mitigate these risks, organizations should implement robust logging, monitoring, and incident response practices.
upvoted 2 times
Koko4Kosh
9 months, 1 week ago
How can a lack of logging cause a system failure? If logging was on debug I could see it filling up the file system but otherwise, this makes no sense as the answer.
upvoted 1 times
...
...
meelaan
1 year, 10 months ago
Selected Answer: B
its B for sure
upvoted 2 times
jackdryan
1 year, 6 months ago
B is correct
upvoted 1 times
...
...
rdy4u
2 years ago
Selected Answer: B
Lack of a good change control process, and the solid implementation of it, will cause internal problems like that, and can also result in data breaches. https://totalsecurityadvisor.blr.com/cybersecurity/why-cybersecurity-and-change-control-go-together-like-peanut-butter-and-jelly/
upvoted 2 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel