Question 1

Which of the following are the major tasks of risk management?

Each correct answer represents a complete solution. Choose two.

Options :

A : Assuring the integrity of organizational data

B : Building Risk free systems

C : Risk control

D : Risk identification

Answer: C,D

Question 2

Rachael is the project manager for a large project in her organization. A new change request has

been proposed that will affect several areas of the project. One area of the project change impact is

on work that a vendor has already completed. The vendor is refusing to make the changes as they've

already completed the project work they were contracted to do. What can Rachael do in this

instance?

Options :

A : Threaten to sue the vendor if they don't complete the work.

B : Fire the vendor for failing to complete the contractual obligation.

C :

Withhold the vendor-s payments for the work they've completed.

D : Refer to the contract agreement for direction.

Answer: D

Question 3

Which of the following security controls will you use for the deployment phase of the SDLC to build

secure software?

Each correct answer represents a complete solution. Choose all that apply.

Options :

A : Vulnerability Assessment and Penetration Testing

B : Security Certification and Accreditation (C&A)

C : Change and Configuration Control

D : Risk Adjustments

Answer: A,B,D

Question 4

Which of the following are the types of access controls?

Each correct answer represents a complete solution. Choose three.

Options :

A : Administrative

B : Automatic

C : Physical

D : Technical

Answer: A,C,D

Question 5

In which of the following alternative processing sites is the backup facility maintained in a constant

order, with a full complement of servers, workstations, and communication links ready to assume

the primary operations responsibility?

Options :

A : Mobile Site

B : Cold Site

C : Warm Site

D : Hot Site

Answer: D