A criminal organization is planning an attack on a government network.

ISC CISSP Question Answer

A criminal organization is planning an attack on a government network. Which of the following scenarios presents the HIGHEST risk to the organization?

Network is flooded with communication traffic by the attacker.

Organization loses control of their network devices.

Network management communications is disrupted.

Attacker accesses sensitive information regarding the network topology.

Explanation:

The scenario that presents the highest risk to the organization is the one where the organization loses control of their network devices. Network devices are the hardware components that enable the communication and connectivity between the systems and networks, such as the switches, routers, firewalls, or servers. Losing control of the network devices means that the organization cannot manage, configure, or monitor the network devices, and that the network devices are compromised, manipulated, or controlled by the attacker. Losing control of the network devices can have severe consequences for the organization, such as:

The organization cannot ensure the security, availability, or performance of the network, and may experience network outages, disruptions, or degradation.

The organization cannot protect the confidentiality, integrity, or authenticity of the data that is transmitted or stored on the network, and may suffer data breaches, leaks, or losses.

The organization cannot prevent the attacker from accessing, modifying, or destroying the systems and resources that are connected to the network, and may face system damage, data corruption, or service denial.

The organization cannot detect, contain, or eradicate the attacker from the network, and may face persistent or escalating attacks, or legal or regulatory liabilities. The other options are not the scenarios that present the highest risk to the organization, as they either do not involve losing control of the network devices, or do not have as severe consequences as losing control of the network devices. References: CISSP - Certified Information Systems Security Professional, Domain 4. Communication and Network Security, 4.1 Implement secure design principles in network architectures, 4.1.1 Apply secure design principles to network architecture, 4.1.1.1 Secure network design elements; CISSP Exam Outline, Domain 4. Communication and Network Security, 4.1 Implement secure design principles in network architectures, 4.1.1 Apply secure design principles to network architecture, 4.1.1.1 Secure network design elements

CISSP PDF/Engine

Printable Format
Value of Money
100% Pass Assurance
Verified Answers
Researched by Industry Experts
Based on Real Exams Scenarios
100% Real Questions

Get 60% Discount on All Products, Use Coupon: "8w52ceb345"

Commercial off-the-shelf (COTS) software presents which of the following additional security concerns?

Why would a system be structured to isolate different classes of information from one another...

Summer Special Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 8w52ceb345

A criminal organization is planning an attack on a government network.

The Answer Is:

Explanation:

Quick Links