Effective CISSP Questions

According to ISO/IEC 27035-3, investigation refers to the systematic or formal process of inquiring into or researching, and examining facts or materials associated with a matter. Which of the following most likely involves electronic discovery demands? (Wentz QOTD)
A. Civil investigation
B. Administrative investigation
C. Internal investigation
D. Operational investigation

Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.

My suggested answer is A. Civil investigation.

Wentz’s book, The Effective CISSP: Security and Risk Management, helps CISSP and CISM aspirants build a solid conceptual security model. It is a tutorial for information security and a supplement to the official study guides for the CISSP and CISM exams and an informative reference for security professionals.


Discovery is the pre-trial phase in a lawsuit in which each party investigates the facts of a case, through the rules of civil procedure, by obtaining evidence from the opposing party and others by means of discovery devices including requests for answers to interrogatories, requests for production of documents and things, requests for admissions, and depositions.


  1. Requests for answers to interrogatories
  2. Requests for production of documents and things
  3. Requests for admissions
  4. Depositions

Electronic discovery

Electronic discovery or “e-discovery” refers to the discovery of information stored in electronic format (often referred to as Electronically Stored Information, or ESI).




根據 ISO/IEC 27035-3,調查是指查詢或研究以及檢查與事項相關的事實或材料的系統或正式過程。 以下哪項最有可能涉及電子取證(e-discovery)要求? (Wentz QOTD)
A. 民事調查 (Civil investigation)
B. 行政調查 (Administrative investigation)
C. 內部調查 (Internal investigation)
D. 業務調查 (Operational investigation)

Leave a Reply