ISC CAP Practice Test – Member Shared Questions, Page 24

Question 231

Which of the following are the objectives of the security certification documentation task? Each correct answer represents a complete solution. Choose all that apply.

A.

To prepare the Plan of Action and Milestones (POAM) based on the security assessment

B.

To provide the certification findings and recommendations to the information system owner

C.

To assemble the final security accreditation package and then submit it to the authorizing o fficial

D.

To update the system security plan based on the results of the security assessment

Show Answer Comment (0)

Question 232

Which of the following statements about System Access Control List (SACL) is true?

A.

It contains a list of any events that are set to audit for that particular object.

B.

It is a mechanism for reducing the need for globally unique IP addresses.

C.

It contains a list of both users and groups and whatever permissions they have.

D.

It exists for each and every permission entry assigned to any object.

Show Answer Comment (0)

Question 233

Kelly is the project manager of the BHH project for her organization. She is completing the risk identification process for this portion of her project. Which one of the following is the only thing that the risk identification process will create for Kelly?

A.

Project document updates

B.

Risk register updates

C.

Change requests

D.

Risk register

Show Answer Comment (0)

Question 234

You are the project manager for your organization. You are working with your project team to complete the qualitative risk analysis process. The first tool and technique you are using requires that you assess the probability and what other characteristic of each identified risk in the project?

A.

Risk owner

B.

Risk category

C.

Impact

D.

Cost

Show Answer Comment (0)

Question 235

You are preparing to complete the quantitative risk analysis process with your project team and several subject matter experts. You gather the necessary inputs including the project's cost management plan. Why is it necessary to include the project's cost management plan in the preparation for the quantitative risk analysis process?

A.

The project's cost management plan can help you to determine what the total cost of the project is allowed to be.

B.

The project's cost management plan provides direction on how costs may be changed due to identified risks.

C.

The project's cost management plan provides control that may help determine the structure for quantitative analysis of the budget.

D.

The project's cost management plan is not an input to the quantitative risk analysis process .

Show Answer Comment (0)

Question 236

Question 237

You work as a project manager for BlueWell Inc. There has been a delay in your project work that is adversely affecting the project schedule. You decided, with your stakeholders' approval, to fast track the project work to get the project done faster. When you fast track the project which of the following are likely to increase?

Become a Premium Member for full access

Unlock Premium Member

Question 238

Information Security management is a process of defining the security controls in order to protect information assets. What are the security management responsibilities?

Each correct answer represents a complete solution. Choose all that apply.

Become a Premium Member for full access

Unlock Premium Member

Question 239

Which of the following are included in Technical Controls?

Each correct answer represents a complete solution. Choose all that apply.

Become a Premium Member for full access

Unlock Premium Member

Question 240

You are the project manager of the HJK project for your organization. You and the project team have created risk responses for many of the risk events in the project. A teaming agreement is an example of what risk response?

Become a Premium Member for full access

Unlock Premium Member