CAS-002 · Question #370
CAS-002 Question #370: Real Exam Question with Answer & Explanation
The correct answer is A: Vulnerability Identification. Risk assessment is the first process of risk management. It helps in determining the extent of potential threats and risks associated with an IT system throughout its SDLC. The risk assessment methodology covers nine steps which are as follows: - Step 1-System Characterization -
Question
Options
- AVulnerability Identification
- BCost Analysis
- CThreat Identification
- DSystem Characterization
Explanation
Risk assessment is the first process of risk management. It helps in determining the extent of potential threats and risks associated with an IT system throughout its SDLC. The risk assessment methodology covers nine steps which are as follows: - Step 1-System Characterization - Step 2-Threat Identification - Step 3-Vulnerability Identification - Step 4-Control Analysis - Step 5-Likelihood Determination - Step 6-Impact Analysis - Step 7-Risk Determination - Step 8-Control Recommendations - Step 9-Results Documentation
Community Discussion
No community discussion yet for this question.