(ISC)2(ISC)2
CAP · Question #11
CAP Question #11: Real Exam Question with Answer & Explanation
The correct answer is B: Document and implement a mitigation plan.. See the full explanation below for the reasoning.
Security and Privacy Governance, Risk Management, and Compliance Program
Question
The phase 3 of the Risk Management Framework (RMF) process is known as mitigation planning. Which of the following processes take place in phase 3? Each correct answer represents a complete solution. Choose all that apply.
Options
- AIdentify threats, vulnerabilities, and controls that will be evaluated.
- BDocument and implement a mitigation plan.
- CAgree on a strategy to mitigate risks.
- DEvaluate mitigation progress and plan next assessment.
Topics
#Risk Management Framework (RMF)#Mitigation Planning#Risk Mitigation#RMF Process Activities
Community Discussion
No community discussion yet for this question.