CAP New Questions Free Download In Lead2pass:
In which of the following testing methodologies do assessors use all available documentation and work under no constraints, and attempt to circumvent the security features of an information system?
A. Full operational test
B. Walk-through test
C. Penetration test
D. Paper test
New Lead2pass (ISC)2 CAP New Questions Free Download:
Which of the following is an entry in an object’s discretionary access control list (DACL) that grants permissions to a user or group?
A. Access control entry (ACE)
B. Discretionary access control entry (DACE)
C. Access control list (ACL)
D. Security Identifier (SID)
2018 Lead2pass New Updated CAP Exam Questions:
The phase 3 of the Risk Management Framework (RMF) process is known as mitigation planning.
Which of the following processes take place in phase 3?
Each correct answer represents a complete solution. Choose all that apply.
A. Identify threats, vulnerabilities, and controls that will be evaluated.
B. Document and implement a mitigation plan.
C. Agree on a strategy to mitigate risks.
D. Evaluate mitigation progress and plan next assessment.