nerdexam
ExamsCAPQuestions#348
(ISC)2(ISC)2

CAP · Question #348

CAP Question #348: Real Exam Question with Answer & Explanation

The correct answer is B: Apply classification criteria to rank data assets and related IT resources.. See the full explanation below for the reasoning.

Security and Privacy Governance, Risk Management, and Compliance Program

Question

The phase 0 of Risk Management Framework (RMF) is known as strategic risk assessment planning. Which of the following processes take place in phase 0? Each correct answer represents a complete solution. Choose all that apply.

Options

  • AReview documentation and technical data.
  • BApply classification criteria to rank data assets and related IT resources.
  • CEstablish criteria that will be used to classify and rank data assets.
  • DIdentify threats, vulnerabilities, and controls that will be evaluated.
  • EEstablish criteria that will be used to evaluate threats, vulnerabilities, and controls.

Topics

#Risk Management Framework (RMF)#RMF Phase 0 (Prepare)#Strategic Risk Assessment Planning#Data Classification Criteria

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAP PracticeBrowse All CAP Questions