nerdexam
Exams312-50V10Questions#770
EC-Council

312-50V10 · Question #770

312-50V10 Question #770: Real Exam Question with Answer & Explanation

The correct answer is A: Administrative safeguards. A risk assessment is a structured process with defined components, and administrative safeguards are a recognized element used to evaluate and mitigate identified risks.

Information Security and Ethical Hacking Fundamentals

Question

Which of the following is a component of a risk assessment?

Options

  • AAdministrative safeguards
  • BPhysical security
  • CLogical interface
  • DDMZ

Explanation

A risk assessment is a structured process with defined components, and administrative safeguards are a recognized element used to evaluate and mitigate identified risks.

Common mistakes.

  • B. Physical security is a category of controls that may be reviewed or recommended as an output of a risk assessment, but it is a control domain rather than a component of the assessment process itself.
  • C. Logical interface is a networking or software abstraction concept and is not a recognized phase or component in formal risk assessment methodologies.
  • D. A DMZ is a network architecture control used to segment untrusted traffic and is an implementation artifact, not a component of the risk assessment process.

Concept tested. Risk assessment components and administrative safeguards

Reference. https://csrc.nist.gov/publications/detail/sp/800-30/rev-1/final

Topics

#risk assessment#administrative safeguards#security controls#compliance

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V10 Practice