nerdexam
ExamsCAS-003Questions#156
CompTIA

CAS-003 · Question #156

CAS-003 Question #156: Real Exam Question with Answer & Explanation

The correct answer is A: $60,000. ALE before implementing application caching: ALE = 5 x $40,000 ALE after implementing application caching: ALE = 1 x $40,000 The monetary value earned would be the sum of subtracting the ALE calculated after implementing application caching and the cost of the countermeasures, fr

Question

A security analyst has been asked to develop a quantitative risk analysis and risk assessment for the company's online shopping application. Based on heuristic information from the Security Operations Center (SOC), a Denial of Service Attack (DoS) has been successfully executed 5 times a year. The Business Operations department has determined the loss associated to each attack is $40,000. After implementing application caching, the number of DoS attacks was reduced to one time a year. The cost of the countermeasures was $100,000. Which of the following is the monetary value earned during the first year of operation?

Options

  • A$60,000
  • B$100,000
  • C$140,000
  • D$200,000

Explanation

ALE before implementing application caching: ALE = 5 x $40,000 ALE after implementing application caching: ALE = 1 x $40,000 The monetary value earned would be the sum of subtracting the ALE calculated after implementing application caching and the cost of the countermeasures, from the ALE calculated before implementing application caching. Monetary value earned = $200,000 - $40,000 - $100,000 Monetary value earned = $60,000

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-003 Practice