Testking but not only provides you all the data in connection with Test CAP research guide but in addition gives you the wonderful research materials helping to make a recognition assessment simple. CAP research materials and CAP have been ready for you actually by way of the experienced and skilled squad from it pros who contain a extensive experience with students?¡¥ difficulties and their prerequisites on the proclaimed recognition.

2021 Sep CAP exam cram

Q191. You are the project manager of the CUL project in your organization. You and the project team are assessing the risk events and creating a probability and impact matrix for the identified risks.

Which one of the following statements best describes the requirements for the data type used in qualitative risk analysis?

A. A qualitative risk analysis requires fast and simple data to complete the analysis.

B. A qualitative risk analysis requires accurate and unbiased data if it is to be credible.

C. A qualitative risk analysis required unbiased stakeholders with biased risk tolerances.

D. A qualitative risk analysis encourages biased data to reveal risk tolerances.

Answer: B


Q192. Which of the following NIST documents defines impact?

A. NIST SP 800-53

B. NIST SP 800-26

C. NIST SP 800-30

D. NIST SP 800-53A

Answer: C


Q193. Which of the following recovery plans includes specific strategies and actions to deal with specific variances to assumptions resulting in a particular security problem, emergency, or state of affairs?

A. Continuity of Operations Plan

B. Disaster recovery plan

C. Contingency plan

D. Business continuity plan

Answer: C


Q194. Who is responsible for the stakeholder expectations management in a high-profile, high-risk project?

A. Project management office

B. Project sponsor

C. Project risk assessment officer

D. Project manager

Answer: D


Q195. Which of the following is used in the practice of Information Assurance (IA) to define assurance requirements?

A. Classic information security model

B. Communications Management Plan

C. Five Pillars model

D. Parkerian Hexad

Answer: A


CAP free question

Replace CAP exam prep:

Q196. Which of the following terms related to risk management represents the estimated frequency at which a threat is expected to occur?

A. Safeguard

B. Single Loss Expectancy (SLE)

C. Exposure Factor (EF)

D. Annualized Rate of Occurrence (ARO)

Answer: D


Q197. Which of the following roles is responsible for review and risk analysis of all contracts on a regular basis?

A. The Supplier Manager

B. The IT Service Continuity Manager

C. The Service Catalogue Manager

D. The Configuration Manager

Answer: A


Q198. Gary is the project manager for his project. He and the project team have completed the qualitative risk analysis process and are about to enter the quantitative risk analysis process when Mary, the project sponsor, wants to know what quantitative risk analysis will review. Which of the following statements best defines what quantitative risk analysis will review?

A. The quantitative risk analysis process will analyze the effect of risk events that may substantially impact the project's competing demands.

B. The quantitative risk analysis reviews the results of risk identification and prepares the project for risk response management.

C. The quantitative risk analysis process will review risk events for their probability and impact on the project objectives.

D. The quantitative risk analysis seeks to determine the true cost of each identified risk event and the probability of each risk event to determine the risk exposure.

Answer: A


Q199. Which of the following governance bodies provides management, operational and technical controls to satisfy security requirements?

A. Chief Information Security Officer

B. Senior Management

C. Information Security Steering Committee

D. Business Unit Manager

Answer: B


Q200. You are the project manager for GHY Project and are working to create a risk response for a negative risk. You and the project team have identified the risk that the project may not complete on time, as required by the management, due to the creation of the user guide for the software you're creating. You have elected to hire an external writer in order to satisfy the requirements and to alleviate the risk event. What type of risk response have you elected to use in this instance?

A. Sharing

B. Avoidance

C. Transference

D. Exploiting

Answer: C