CSSLP Question #66: Real Exam Question with Answer & Explanation

The correct answer is A: Acceptance. Acceptance is the only risk response strategy that can be applied to both positive and negative risk events, where the project team decides not to take any action regarding the risk.

Secure Software Lifecycle Management

Question

There are seven risks responses that a project manager can choose from. Which risk response is appropriate for both positive and negative risk events?

Options

AAcceptance
BTransference
CSharing
DMitigation

Explanation

Acceptance is the only risk response strategy that can be applied to both positive and negative risk events, where the project team decides not to take any action regarding the risk.

Common mistakes.

B. Transference (or transfer) is primarily used for negative risks, moving the ownership and responsibility of the risk to a third party.
C. Sharing is a strategy typically applied to positive risks (opportunities) to increase the probability and/or impact of the opportunity, by sharing ownership with a third party.
D. Mitigation is specifically a response for negative risks, aiming to reduce the probability or impact of the threat to an acceptable level.

Concept tested. Project risk management strategies

Reference. https://www.pmi.org/pmbok-guide-standards/foundational/pmbok/risk-management

Topics

#Risk Management#Risk Responses#Positive Risks#Negative Risks

Community Discussion

No community discussion yet for this question.

Full CSSLP Practice Browse All CSSLP Questions