CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. ISC
  5. CAP

Free CAP Exam Braindumps (page: 30)

Page 29 of 99
PDF with 395 Questions

Which of the following are the tasks performed by the owner in the information classification schemes?
Each correct answer represents a part of the solution. Choose three.

  1. To make original determination to decide what level of classification the information requires, which is based on the business requirements for the safety of the data.
  2. To perform data restoration from the backups whenever required.
  3. To review the classification assignments from time to time and make alterations as the business requirements alter.
  4. To delegate the responsibility of the data safeguard duties to the custodian.

Answer(s): A,C,D



Which of the following approaches can be used to build a security program? Each correct answer represents a complete solution. Choose all that apply.

  1. Bottom-Up Approach
  2. Right-Up Approach
  3. Top-Down Approach
  4. Left-Up Approach

Answer(s): A,C



Mary is the project manager for the BLB project. She has instructed the project team to assemble, to review the risks. She has included the schedule management plan as an input for the quantitative risk analysis process.
Why is the schedule management plan needed for quantitative risk analysis?

  1. Mary will utilize the schedule controls and the nature of the schedule for the quantitative analysis of the schedule.
  2. Mary will schedule when the identified risks are likely to happen and affect the project schedule.
  3. Mary will utilize the schedule controls to determine how risks may be allowed to change the project schedule.
  4. Mary will use the schedule management plan to schedule the risk identification meetings throughout the remaining project.

Answer(s): A



Sammy is the project manager for her organization. She would like to rate each risk based on its probability and affect on time, cost, and scope. Harry, a project team member, has never done this before and thinks Sammy is wrong to attempt this approach. Harry says that an accumulative risk score should be created, not three separate risk scores.
Who is correct in this scenario?

  1. Sammy is correct, because organizations can create risk scores for each objective of the project.
  2. Harry is correct, because the risk probability and impact considers all objectives of the project.
  3. Harry is correct, the risk probability and impact matrix is the only approach to risk assessment.
  4. Sammy is correct, because she is the project manager.

Answer(s): A






Post your Comments and Discuss ISC CAP exam with other Community members:

CAP Exam Discussions & Posts