PT0-001 Question #39: Real Exam Question with Answer & Explanation

The correct answer is C: Tolerance to impact. Knowing the company policies and their tolerance to impact are two of the most important items needed to know when planning for an engagement. The others are important, but this scenario is asking for the two most important. Cybersecurity professionals widely agree that vulnerabi

Engagement management

Question

Which of the following are MOST important when planning for an engagement? (Select TWO).

Options

AGoals/objectives
BArchitectural diagrams
CTolerance to impact
DStorage time for a report
ECompany policies

Explanation

Knowing the company policies and their tolerance to impact are two of the most important items needed to know when planning for an engagement. The others are important, but this scenario is asking for the two most important. Cybersecurity professionals widely agree that vulnerability management is a critical component of any information security program, and for this reason, many organizations mandate vulnerability scanning in corporate policy, even if that is not a regulatory requirement. The risk and impact tolerance of the organization being assessed should be used to define the scope and rules of engagement for the assessment.

Topics

#engagement planning#impact tolerance#scope definition#company policies

Community Discussion

No community discussion yet for this question.

Full PT0-001 Practice