CAS-005 · Question #527
CAS-005 Question #527: Real Exam Question with Answer & Explanation
The correct answer is D: A transparent supply chain risk management and testing program. A transparent supply chain risk management and testing program gives customers visibility into how the company evaluates, tests, and secures globally sourced components. This directly reassures customers that risks from the appliance are minimized through rigorous, verifiable con
Question
A company sells a security appliance assembled from globally sourced hardware and software components. Installing the security appliance requires enabling administrative permissions for the service accounts on the appliance. Which of the following allows the company to reassure new and existing customers that the risk introduced by the appliance is minimal?
Options
- AThe results of a qualitative risk analysis performed on the appliance
- BA business impact analysis and risk prioritization process
- CResults of internal risk reduction studies conducted by a third-party assessor
- DA transparent supply chain risk management and testing program
Explanation
A transparent supply chain risk management and testing program gives customers visibility into how the company evaluates, tests, and secures globally sourced components. This directly reassures customers that risks from the appliance are minimized through rigorous, verifiable controls and supply chain oversight.
Community Discussion
No community discussion yet for this question.