Free Lead2pass (ISC)2 CAP PDF Dumps With New Update Exam Questions:
https://www.lead2pass.com/cap.html
QUESTION 31
In which of the following testing methodologies do assessors use all available documentation and work under no constraints, and attempt to circumvent the security features of an information system?
A. Full operational test
B. Walk-through test
C. Penetration test
D. Paper test (more…)
admin May 31st, 2018
Posted In: (ISC)2, CAP Dumps, CAP Exam Questions, CAP New Questions, CAP PDF, CAP VCE
Tags: CAP braindumps, CAP exam dumps, CAP exam question, CAP pdf dumps, CAP practice test, CAP study guide, CAP vce dumps, Lead2pass CAP
Download Free (ISC)2 CAP Exam Questions And Answers From Lead2pass:
https://www.lead2pass.com/cap.html
QUESTION 21
Which of the following is an entry in an object’s discretionary access control list (DACL) that grants permissions to a user or group?
A. Access control entry (ACE)
B. Discretionary access control entry (DACE)
C. Access control list (ACL)
D. Security Identifier (SID)
Answer: A
QUESTION 22
You are the project manager for your organization. You have identified a risk event you’re your organization could manage internally or externally. If you manage the event internally it will cost your project $578,000 and an additional $12,000 per month the solution is in use. A vendor can manage the risk event for you. The vendor will charge $550,000 and $14,500 per month that the solution is in use. How many months will you need to use the solution to pay for the internal solution in comparison to the vendor’s solution?
A. Approximately 13 months
B. Approximately 11 months
C. Approximately 15 months
D. Approximately 8 months
Answer: B
QUESTION 23
Which of the following refers to the ability to ensure that the data is not modified or tampered with?
A. Confidentiality
B. Availability
C. Integrity
D. Non-repudiation
Answer: C
QUESTION 24
Management wants you to create a visual diagram of what resources will be utilized in the project deliverables. What type of a chart is management asking you to create?
A. Work breakdown structure
B. Resource breakdown structure
C. RACI chart
D. Roles and responsibility matrix
Answer: B
QUESTION 25
You are preparing to start the qualitative risk analysis process for your project. You will be relying on some organizational process assets to influence the process. Which one of the following is NOT a probable reason for relying on organizational process assets as an input for qualitative risk analysis?
A. Information on prior, similar projects
B. Review of vendor contracts to examine risks in past projects
C. Risk databases that may be available from industry sources
D. Studies of similar projects by risk specialists
Answer: B
QUESTION 26
System Authorization is the risk management process. System Authorization Plan (SAP) is a comprehensive and uniform approach to the System Authorization Process. What are the different phases of System Authorization Plan?
Each correct answer represents a part of the solution. Choose all that apply.
A. Pre-certification
B. Certification
C. Post-certification
D. Authorization
E. Post-Authorization
Answer: ABDE
QUESTION 27
A part of a project deals with the hardware work. As a project manager, you have decided to hire a company to deal with all hardware work on the project. Which type of risk response is this?
A. Avoidance
B. Mitigation
C. Exploit
D. Transference
Answer: D
QUESTION 28
Risks with low ratings of probability and impact are included on a ____ for future monitoring.
A. Watchlist
B. Risk alarm
C. Observation list
D. Risk register
Answer: A
QUESTION 29
You are the project manager for your organization. You are preparing for the quantitative risk analysis. Mark, a project team member, wants to know why you need to do quantitative risk analysis when you just completed qualitative risk analysis. Which one of the following statements best defines what quantitative risk analysis is?
A. Quantitative risk analysis is the planning and quantification of risk responses based on probability and impact of each risk event.
B. Quantitative risk analysis is the process of prioritizing risks for further analysis or action by assessing and combining their probability of occurrence and impact.
C. Quantitative risk analysis is the review of the risk events with the high probability and the highest impact on the project objectives.
D. Quantitative risk analysis is the process of numerically analyzing the effect of identified risks on overall project objectives.
Answer: D
QUESTION 30
Frank is the project manager of the NHH Project. He is working with the project team to create a plan to document the procedures to manage risks throughout the project. This document will define how risks will be identified and quantified. It will also define how contingency plans will be implemented by the project team. What document is Frank and the NHH Project team creating in this scenario?
A. Project management plan
B. Resource management plan
C. Risk management plan
D. Project plan
Answer: C
CAP dumps full version (PDF&VCE): https://www.lead2pass.com/cap.html
Large amount of free CAP exam questions on Google Drive: https://drive.google.com/open?id=1-r0YSwCbXcNQ-OMWyTTqOvJ9XWNIRbjP
admin April 16th, 2018
Posted In: (ISC)2, CAP Dumps, CAP Exam Questions, CAP New Questions, CAP PDF, CAP VCE
Tags: CAP braindumps, CAP exam dumps, CAP exam question, CAP pdf dumps, CAP practice test, CAP study guide, CAP vce dumps, Lead2pass CAP