Check Point Certification Exams Interview Questions & Answers
Download PDF

Prepare comprehensively for your Check Point Certification interview with our extensive list of 35 questions. These questions are specifically selected to challenge and enhance your knowledge in Check Point Certification. Perfect for all proficiency levels, they are key to your interview success. Don't miss out on our free PDF download, containing all 35 questions to help you succeed in your Check Point Certification interview. It's an invaluable tool for reinforcing your knowledge and building confidence.

35 Check Point Certification Questions and Answers:

Check Point Certification Job Interview Questions Table of Contents:

Check Point Certification Job Interview Questions and Answers

1 :: Explain Which type of Business Continuity Plan (BCP) test involves practicing aspects of the BCP,
without actually interrupting operations or bringing an alternate site on-line?
A. Structured walkthrough
B. Checklist
C. Simulation
D. Full interruption
E. Parallel

C. Simulation

2 :: Explain Which of the following can be stored on a workstation? (Choose TWO.)
A. Payroll information
B. Data objects used by many employees
C. Databases
D. Interoffice memo
E. Customer correspondence

D. Interoffice memo
E. Customer correspondence

3 :: A(n) ______________________________ is a quantitative review of risks, to determine how an
organization will continue to function, in the event a risk is realized.
A. Monitored risk process
B. Disaster-recovery plan
C. Business impact analysis
D. Full interruption test
E. Information security audit

C. Business impact analysis

4 :: Explain Who should have physical access to network-connectivity devices and corporate servers?
A. Customers and clients
B. Accounting, information-technology, and auditing staff
C. Managers and C-level executives
D. Only appropriate information-technology personnel

D. Only appropriate information-technology personnel

5 :: _______ is a method of tricking users into revealing passwords, or other sensitive information.
A. Dumpster diving
B. Means testing
C. Social engineering
D. Risk
E. Exposure

C. Social engineering

6 :: Explain Which of the following are enterprise administrative controls? (Choose TWO.)
A. Network access control
B. Facility access control
C. Password authentication
D. Background checks
E. Employee handbooks

D. Background checks
E. Employee handbooks

7 :: A new U.S. Federal Information Processing Standard specifies a cryptographic algorithm. This
algorithm is used by U.S. government organizations to protect sensitive, but unclassified,
information. What is the name of this Standard?
A. Triple DES
B. Blowfish
C. AES
D. CAST
E. RSA

C. AES

8 :: Explain Which of the following tests provides testing teams some information about hosts or networks?
A. Partial-knowledge test
B. Full-knowledge test
C. Zero-knowledge test

A. Partial-knowledge test

9 :: (n) ________________ is a one-way mathematical function that maps variable values into
smaller values of a fixed length.
A. Symmetric key
B. Algorithm
C. Back door
D. Hash function
E. Integrity

D. Hash function

10 :: _______ intrusion-detection systems learn the behavior of a machine or network, and create a
baseline.
A. Behavioral analysis
B. Statistical anomaly
C. Network
D. Pattern matching
E. Host

B. Statistical anomaly

11 :: Explain Which principle of secure design states that a security mechanisms methods must be testable?
A. Separation of privilege
B. Least common mechanism
C. Complete mediation
D. Open design
E. Economy of mechanism

D. Open design

12 :: Explain Which of the following should be included in an enterprise Business Continuity Plan (BCP)?
(Choose THREE.)
A. Accidental or intentional data deletion
B. Severe weather disasters
C. Employee terminations
D. Employee administrative leave
E. Minor power outages

A. Accidental or intentional data deletion
B. Severe weather disasters
E. Minor power outages

13 :: Explain Which of the following is the BEST method for managing users in an enterprise?
A. Enter user data in a spreadsheet.
B. Implement centralized access control.
C. Deploy Kerberos.
D. Place them in a centralized Lightweight Directory Access Protocol.
E. Use a Domain Name System.

D. Place them in a centralized Lightweight Directory Access Protocol.

14 :: A(n) _______ is the first step for determining which technical information assets should be
protected.
A. Network diagram
B. Business Impact Analysis
C. Office floor plan
D. Firewall
E. Intrusion detection system?

A. Network diagram

15 :: Explain What type of document contains information on alternative business locations, IT resources, and
personnel?
A. End-user license agreement
B. Nondisclosure agreement
C. Acceptable use policy
D. Security policy
E. Business continuity plan?

E. Business continuity plan

16 :: Organizations _______ risk, when they convince another entity to assume the risk for them.
A. Elevate
B. Assume
C. Deny
D. Transfer
E. Mitigate?

D. Transfer

17 :: Explain How do virtual corporations maintain confidentiality?
A. Encryption
B. Checksum
C. Data hashes
D. Redundant servers
E. Security by obscurity?

A. Encryption

18 :: _______ can mimic the symptoms of a denial-of-service attack, and the resulting loss in
productivity can be no less devastating to an organization.
A. ICMP traffic
B. Peak traffic
C. Fragmented packets
D. Insufficient bandwidth
E. Burst traffic?

D. Insufficient bandwidth

19 :: Which of the following is NOT an auditing function that should be performed regularly?
A. Reviewing IDS alerts
B. Reviewing performance logs
C. Reviewing IDS logs
D. Reviewing audit logs
E. Reviewing system logs?

B. Reviewing performance logs

20 :: Which of the following is an example of a simple, physical-access control?
A. Lock
B. Access control list
C. Background check
D. Token
E. Firewall?

A. Lock

21 :: Virtual corporations typically use a(n) _______ for maintaining centralized information assets.
A. Off-line repository
B. Floppy disk
C. Data warehouse
D. CD-ROM burner
E. Colocation?

E. Colocation

22 :: A _______ attack uses multiple systems to launch a coordinated attack.
A. Distributed denial-of-service
B. Teardrop
C. Birthday
D. FTP Bounce
E. Salami?

A. Distributed denial-of-service

23 :: A(n) _______________ is an unintended communication path that can be used to violate a
system security policy.
A. Covert channel
B. Integrity axiom
C. Simple rule violation
D. Inferred fact?

A. Covert channel

24 :: Explain Which type of Business Continuity Plan (BCP) test involves shutting down a primary site, bringing
an alternate site on-line, and moving all operations to the alternate site?
A. Parallel
B. Full interruption
C. Checklist
D. Structured walkthrough
E. Simulation?

B. Full interruption

25 :: Explain Which encryption algorithm has the highest bit strength?
A. AES
B. Blowfish
C. DES
D. CAST
E. Triple DES?

A. AES

Check Point Certification Interview Questions and Answers — 35 Check Point Certification Interview Questions and Answers