All About CAP pdf exam Mar 2021

Want to know Testking CAP Exam practice test features? Want to lear more about ISC2 ISC2 CAP Certified Authorization Professional certification experience? Study High quality ISC2 CAP answers to Avant-garde CAP questions at Testking. Gat a success with an absolute guarantee to pass ISC2 CAP (ISC2 CAP Certified Authorization Professional) test on your first attempt.

Q169. Wendy is about to perform qualitative risk analysis on the identified risks within her project. Which one of the following will NOT help Wendy to perform this project management activity?

A. Stakeholder register

B. Risk register

C. Project scope statement

D. Risk management plan

Answer: A

Q170. In which of the following Risk Management Framework (RMF) phases is strategic risk assessment planning performed?

A. Phase 0

B. Phase 1

C. Phase 2

D. Phase 3

Answer: A

Q171. You work as a project manager for BlueWell Inc. There has been a delay in your project work that is adversely affecting the project schedule. You decided, with your stakeholders' approval, to fast track the project work to get the project done faster. When you fast track the project which of the following are likely to increase?

A. Quality control concerns

B. Costs

C. Risks

D. Human resource needs

Answer: C

Q172. Which of the following NIST documents includes components for penetration testing?

A. NIST SP 800-53

B. NIST SP 800-26

C. NIST SP 800-37

D. NIST SP 800-30

Answer: D

Q173. Which of the following are included in Administrative Controls?

Each correct answer represents a complete solution. Choose all that apply.

A. Conducting security-awareness training

B. Screening of personnel

C. Monitoring for intrusion

D. Implementing change control procedures

E. Developing policy

Answer: ABDE

Q174. Which of the following statements about role-based access control (RBAC) model is true?

A. In this model, the permissions are uniquely assigned to each user account.

B. In this model, a user can access resources according to his role in the organization.

C. In this model, the same permission is assigned to each user account.

D. In this model, the users canaccess resources according to their seniority.

Answer: B

Q175. A high-profile, high-priority project within your organization is being created. Management wants you to pay special attention to the project risks and do all that you can to ensure that all of the risks are identified early in the project. Management has to ensure that this project succeeds.

Management's risk aversion in this project is associated with what term?

A. Utility function

B. Risk conscience

C. Quantitativerisk analysis

D. Risk mitigation

Answer: A

Q176. Which of the following assessment methodologies defines a six-step technical security evaluation?

A. OCTAVE

B. FITSAF

C. DITSCAP

D. FIPS 102

Answer: D