Ensurepass
2017 July ISC Official New Released CAP Q&As
100% Free Download! 100% Pass Guaranteed!
http://www.ensurepass.com/CAP.html

Certified Authorization Professional

QUESTION 231

Which ofthe following are the objectives of the security certification documentation task? Each correct answer represents a complete solution. Choose all that apply.

 

A.

To prepare the Plan of Action and Milestones (POAM) based on the security assessment

B.

To provide the certification findings and recommendations to the information system owner

C.

To assemble the final security accreditation package and then submit it to the authorizing o fficial

D.

To update the system security plan based on the results of the security assessment

 

Correct Answer: ABCD

QUESTION 232

Which of the following statements about System Access Control List (SACL) is true?

 

A.

It contains a list of any events that are set to audit for that particular object.

B.

It is a mechanism for reducing the need for globally unique IP addresses.

C.

It contains a list of both users and groups and whatever permissions they have.

D.

It exists for each and every permission entry assigned to any object.

 

Correct Answer: A

 

 

QUESTION 233

Kelly is the project manager ofthe BHH project for her organization. She is completing the risk identification process for this portion of her project. Which one of the following is the only thing that the risk identification process will create for Kelly?

 

A.

Project document updates

B.

Risk register updates

C.

Change requests

D.

Risk register

 

Correct Answer: D

 

 

QUESTION 234

You are the project manager for your organization. You are working with your project team tocomplete the qualitative risk analysis process. The first tool and techniqueyou are using requires that you assess the probability and what other characteristic of each identified risk in the project?

 

A.

Risk owner

B.

Risk category

C.

Impact

D.

Cost

 

Correct Answer: C

 

 

QUESTION 235

You are preparing to complete the quantitative risk analysis process with your project team and several subject matter experts. You gather the necessary inputs including the project’s cost management plan. Why is it necessary to include the project’s cost management plan in the preparation for the quantitative risk analysis process?

 

A.

The project’s cost management plan can help you to determine what the total cost of the project is allowed to be.

B.

The project’s cost management plan provides direction on how costs may be changed due to identified risks.

C.

The project’s cost management plan provides control that may help determine the structure for quantitative analysis of the budget.

D.

The project’s cost management plan is not an input to the quantitative risk analysis process .

 

Correct Answer: C

QUESTION 236

What NIACAP certification levels are recommended by the certifier? Each correct answer represents a complete solution. Choose all that apply.

 

A.

Minimum Analysis

B.

Basic System Review

C.

Detailed Analysis

D.

Maximum Analysis

E.

Comprehensive Analysis

F.

Basic Security Review

 

Correct Answer: ACEF

 

 

QUESTION 237

You work as a project manager for BlueWell Inc. There has been a delay in your project work that is adversely affecting the project schedule. You decided, with your stakeholders’ approval,to fast track the project work to get the project done faster. When you fast track the project which of the following are likely to increase?

 

A.

Quality control concerns

B.

Costs

C.

Risks

D.

Human resource needs

 

Correct Answer: C

 

 

QUESTION 238

Information Security managementis a process of defining the security controls in order to protect information assets. What are the security management responsibilities? Each correct answer represents a complete solution. Choose all that apply.

 

A.

Evaluating business objectives, security risks, user productivity, and functionality requirem ents

B.

Determining actual goals that are expected to be accomplished from a security program

C.

Defining steps to ensure that all the responsibilities are accounted for and properly address ed

D.

Determining objectives, scope, policies, priorities, standards, and strategies

 

Correct Answer: ABCD

 

 

QUESTION 239

Which of the following are included in Technical Controls? Each correct answer represents a complete solution. Choose all that apply.

 

A.

Implementing and maintaining access control mechanisms

B.

Password and resource management

C.

Configuration of the infrastructure

D.

Identification and authentication methods

E.

Conducting security-awareness training

F.

Security devices

 

Correct Answer: ABCDF

QUESTION 240

You are the project manager of the HJK project for your organization. You and the project team have created risk responses for many of the risk events in the project. A teaming agreement is an example of what risk response?

 

A.

Acceptance

B.

Mitigation

C.

Sharing

D.

Transference

 

Correct Answer: C

100% Free Download!
—Download Free Demo:CAP Demo PDF
100% Pass Guaranteed!
Download 2017 Ensurepass CAP Full Exam PDF and VCE Q&As:395
—Get 10% off your purchase! Copy it:TJDN-947R-9CCD [2017.07.01-2017.07.31]

Ensurepass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF + VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Ensurepass IT Certification PDF and VCE