Back to Certified Information Systems Security Professional CISSP questions

Scenario-based practice

Select Two (Multi-Select) Questions

Practise Certified Information Systems Security Professional CISSP practice questions — original exam-style scenarios covering every exam domain, with detailed explanations, wrong-answer analysis, and common exam traps.

20
scenario questions
CISSP
exam code
ISC2
vendor

Scenario guide

How to approach select two (multi-select) questions

Multi-select questions tell you to 'Choose TWO' or 'Choose THREE'. Getting partial credit is not a thing — you must select all correct answers with no incorrect ones. The stem always states how many to choose, so trust it. These questions require precision, not best-guess elimination.

Quick answer

Select Two (Multi-Select) Questions questions test whether you can apply the concept in context, not just recognise a definition.

How the topic appears in realistic exam-style scenarios.

Which detail in the question changes the correct answer.

How to eliminate plausible but wrong options.

How to connect the question back to the wider exam objective.

Related practice questions

Related CISSP topic practice pages

Scenario questions usually connect to one or more exam topics. Use these links to review the underlying concepts behind the scenario.

Practice set

Practice scenarios

Question 1easymulti select
Full question →

Which TWO options are valid methods for providing confidentiality in network communications? (Choose two.)

Question 2easymulti select
Open the full VLAN trunking answer →

A network administrator is configuring switches to prevent VLAN hopping attacks. Which TWO of the following measures should be implemented?

Question 3hardmulti select
Full question →

Which THREE of the following are common indicators of a privilege escalation attack? (Choose three.)

Question 4easymulti select
Full question →

Which TWO of the following are considered the primary access control models in the context of the CISSP? (Select two.)

Question 5hardmulti select
Full question →

A security analyst is reviewing an organization's password policy. Which THREE of the following are considered best practices for password security according to current NIST guidelines? (Select three.)

Question 6hardmulti select
Full question →

Which TWO of the following are common causes of network performance degradation that can be detected by network monitoring tools?

Question 7mediummulti select
Open the full VLAN trunking answer →

Which TWO are common techniques to defend against VLAN hopping attacks? (Choose two.)

Question 8hardmulti select
Open the full BGP breakdown →

Which three BGP security mechanisms help protect against route hijacking? (Choose THREE.)

Question 9easymulti select
Full question →

During a security assessment, an organization wants to ensure that its web application is resistant to common attacks. Which THREE testing types should be included?

Question 10easymulti select
Full question →

Which TWO of the following are common techniques used in dynamic application security testing (DAST)?

Question 11hardmulti select
Full question →

Which THREE are key components of a business continuity plan (BCP)?

Question 12mediummulti select
Full question →

Which TWO of the following are essential components of a data classification policy? (Select two.)

Question 13hardmulti select
Full question →

Which THREE of the following are common methods used in security assessment and testing? (Select exactly 3.)

Question 14mediummulti select
Full question →

Which TWO of the following are key components of an Information Security Governance framework? (Select exactly 2)

Question 15hardmulti select
Full question →

Which THREE of the following are valid risk treatment options according to ISO 31000? (Select exactly 3)

Question 16easymulti select
Full question →

Which TWO of the following are examples of physical security controls?

Question 17mediummulti select
Full question →

Which TWO of the following are principles of the Bell-LaPadula security model?

Question 18hardmulti select
Full question →

Which THREE of the following are valid countermeasures against buffer overflow attacks?

Question 19easymulti select
Full question →

Which TWO of the following are valid reasons to implement network segmentation?

Question 20mediummulti select
Full question →

Which THREE of the following are characteristics of a federated identity management system?

These CISSP practice questions are part of Courseiva's free ISC2 certification practice question bank. Courseiva provides original exam-style CISSP questions with detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics.