CISSP Essentials

CISSP quiz: Information security governance and risk management

Test your knowledge of the Information Security Governance and Risk Management domain of the CISSP exam by taking this practice quiz.

This quiz is part of's CISSP Essentials Security School lesson on the Information Security Governance and Risk Management domain of the Common Body of Knowledge.

Created by expert CISSP trainer Shon Harris of Logical Security to help students prepare for the Certified Information Security Systems Professional certification exam, this quiz offers free questions similar to those that will be seen on test day.

Take the quiz now to assess your knowledge of the core topics within the domain including the ISO 27000 series, architecture frameworks, the AIC triad, risk management and more.

This multimedia quiz features interactive components designed to resemble the interactive questions on the CISSP exam. Question types include multiple-choice/single-response, multiple-choice/multiple-response, drag-and-drop pair matching, and "hot zone" questions that require selecting the appropriate area in a graphical image. An 80% score is considered a passing grade. Use the question list menu just above the quiz area to go back to view previous questions or skip ahead.

Bookmark this page to take the quiz later. 

About the author:
Shon Harris is the founder and CEO of Logical Security LLC, an information security consultant, a former engineer in the Air Force's Information Warfare unit, an instructor and an author. She has authored several international best-selling books on information security published by McGraw-Hill and Pearson which have sold over a million copies and have been translated into six languages. Ms. Harris authors academic textbooks for various publishers and articles for trade magazines.

Ms. Harris has consulted for a large number of organizations in every business sector (financial, medical, retail, entertainment, utility) and several U.S. government agencies over the last 18 years. Ms. Harris provides high-end, advanced and specialized consulting for organizations globally. She also works directly with law firms as a technical and expert witness on cases that range from patent infringement and criminal investigations to civil lawsuits, and she specializes in cryptographic technologies. Ms. Harris was recognized as one of the top 25 women in the information security field by Information Security magazine.

CISSP® is a registered certification mark of the International Information Systems Security Certification Consortium, Inc., also known as (ISC)2.

Next Steps

If you scored at least 80% correct, proceed to the next lesson: CISSP access control.

If not, review the material in this lesson on infosec governance and risk management.

Return to the main page of SearchSecurity's CISSP Essentials Security School.

This was first published in September 2014

Dig Deeper on CISSP Certification



Find more PRO+ content and other member only offers, here.



Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: