A. Activity diagram
B. Functional flow block diagram (FFBD)
C. Functional hierarchy diagram
D. Timeline analysis diagram

Answer(s): C
QUESTION: 41
Which of the following is a temporary approval to operate based on an assessment of the
implementation status of the assigned IA Controls?

A. IATO
B. DATO
C. ATO
D. IATT

Answer(s): A
QUESTION: 42
The risk transference is referred to the transfer of risks to a third party, usually for a fee, it
creates a contractual- relationship for the third party to manage the risk on behalf of the
performing organization. Which one of the following is NOT an example of the transference risk
response?

A. Warranties
B. Performance bonds
C. Use of insurance
D. Life cycle costing

Answer(s): D

QUESTION: 43
Which of the following areas of information system, as separated by Information Assurance
Framework, is a collection of local computing devices, regardless of physical location, that are
interconnected via local area networks (LANs) and governed by a single security policy?

A. Networks and Infrastructures
B. Supporting Infrastructures
C. Enclave Boundaries
D. Local Computing Environments
Answer(s): C
QUESTION: 44
Your project team has identified a project risk that must be responded to. The risk has been
recorded in the risk register and the project team has been discussing potential risk responses
for the risk event. The event is not likely to happen for several months but the probability of the
event is high. Which one of the following is a valid response to the identified risk event?

A. Earned value management
B. Risk audit
https://Free-Braindumps.com
11

Free ISC CISSP-ISSEP Exam Braindumps (page: 21)

CISSP-ISSEP Exam Discussions & Posts