Your success in ISC2 CAP is our sole target and we develop all our CAP braindumps in a way that facilitates the attainment of this target. Not only is our CAP study material the best you can find, it is also the most detailed and the most updated. CAP Practice Exams for ISC2 CAP are written to the highest standards of technical accuracy.

Q193. The Identify Risk process determines the risks that affect the project and document their characteristics. Why should the project team members be involved in the Identify Risk process?

A. They are the individuals that will have the best responses for identified risks events within the project.

B. They are the individuals that are most affected by the risk events.

C. They are the individuals that will need a sense of ownership and responsibility for the risk events.

D. They are the individuals that will most likely cause and respond to the risk events.

Answer: C


Q194. What NIACAP certification levels are recommended by the certifier?

Each correct answer represents a complete solution. Choose all that apply.

A. Minimum Analysis

B. Basic System Review

C. Detailed Analysis

D. Maximum Analysis

E. Comprehensive Analysis

F. Basic Security Review

Answer: ACEF


Q195. What is the objective of the Security Accreditation Decision task?

A. To determine whether the agency-level risk is acceptable or not.

B. To make an accreditation decision

C. To accredit the information system

D. To approve revisions of NIACAP

Answer: A


Q196. In which of the following phases does the SSAA maintenance take place?

A. Phase 3

B. Phase 2

C. Phase 1

D. Phase 4

Answer: D


Q197. Thomas is the project manager of the NHJ Project for his company. He has identified several positive risk events within his project and he thinks these events can save the project time and money. Positive risk events, such as these within the NHJ Project are also known as what?

A. Opportunities

B. Benefits

C. Ancillary constituent components

D. Contingency risks

Answer: A


Q198. You are the project manager for GHY Project and are working to create a risk response for a negative risk. You and the project team have identified the risk that the project may not complete on time, as required by the management, due to the creation of the user guide for the software you're creating. You have elected to hire an external writer in order to satisfy the requirements and to alleviate the risk event. What type of risk response have you elected to use in this instance?

A. Sharing

B. Avoidance

C. Transference

D. Exploiting

Answer: C


Q199. Which of the following individuals is responsible for the final accreditation decision?

A. Certification Agent

B. User Representative

C. Information System Owner

D. Risk Executive

Answer: C


Q200. Which of the following individuals is responsible for the final accreditation decision?

A. Information System Owner

B. Certification Agent

C. User Representative

D. Risk Executive

Answer: A