If one says that the particular control or monitoring tool is sustainable, then it refers to what ability?

• A.The ability to adapt as new elements are added to the environment
• B.The ability to ensure the control remains in place when it fails
• C.The ability to protect itself from exploitation or attack
• D.The ability to be applied in same manner throughout the organization
• E.Explanation:
  Sustainability of the controls or monitoring tools refers to its ability to function as expected over
  time or when changes are made to the environment.
• F.is incorrect. This is not valid definition for defining sustainability of al tool.
• G.is incorrect. Sustainability ensures that controls changes with the conditions, so as not
  to fail in any circumstances. Hence this in not valid answer.

Comment: *

Name: *

Email: *

Verification: *

The PRIMARY reason for periodic penetration testing of Internet-facing applications is to:

• A.verify Internet firewall control settings.
• B.identify vulnerabilities in the system.
• C.ensure policy and regulatory compliance.
• D.assess the proliferation of new threats.

Comment: *

Name: *

Email: *

Verification: *

The PRIMARY purpose of using a framework for risk analysis is to:

• A.help define risk tolerance
• B.improve consistency
• C.help develop risk scenarios.
• D.improve accountability

Comment: *

Name: *

Email: *

Verification: *

Read" rights to application files in a controlled server environment should be approved by the:

• A.business process owner.
• B.database administrator.
• C.chief information officer.
• D.systems administrator.

Comment: *

Name: *

Email: *

Verification: *

You are the project manager of the KJH Project and are working with your project team to plan the risk responses. Consider that your project has a budget of $500,000 and is expected to last six months. Within the KJH Project you have identified a risk event that has a probability of .70 and has a cost impact of $350,000.
When it comes to creating a risk response for this event what is the risk exposure of the event that must be considered for the cost of the risk response?

• A.The risk exposure of the event is $350,000.
• B.The risk exposure of the event is $500,000.
• C.The risk exposure of the event is $850,000.
• D.The risk exposure of the event is $245,000.

Comment: *

Name: *

Email: *

Verification: *