Practice Questions
Select your answer and get immediate feedback. Every option explains why it is correct or incorrect — read the explanations, not just the result.
Cyber Fundamentals
Attack chains, CIA triad, attacker profiles, WHWH model, policy hierarchy, defence in depth, incident triage.
3 Easy
3 Medium
2 Hard
4 CREST-relevant
GRC Fundamentals
Risk treatment, data classification, framework selection, GDPR lawful bases, audit evidence, ICO notification, risk registers.
3 Easy
3 Medium
2 Hard
6 CREST-relevant