I can assist with this. I built the world's first secure RDBMS and contributed in depth to the earliest secure UNIX kernels. I co-authored three of the National Computer Security Center's "Rainbow Books" and nearly half of the DITSCAP defense accreditation standard that gave rise to NIACAP. I have built the internals of several commercial firewalls and designed the firewalls that, to this day, protect the Department of Transportation, the United States Courts, and the Nuclear Regulatory Commission. I even contributed questions to the CISSP exam regularly until the "certification" degenerated into politicized, paraprofessional nonsense.
Within what scope did you want these questions attacked? "What is the difference between a static and a dynamic scan [both terms not strictly correctly applied]" can be answered in one paragraph or in five pages.