- Part 401

Which of the following best describes the FRAP method of risk analysis?

seenagapeMarch 25, 2015 Leave a comment

After a security meeting, IT leaders decided that the organization will perform a completely new
risk analysis, as the previous one was done over five years ago. The methods that will be used is
FRAP. Which of the following best describes the FRAP method of risk analysis?

What purpose can the ISO/IEC 20000 standard serve?

seenagapeMarch 25, 2015 Leave a comment

What purpose can the ISO/IEC 20000 standard serve?

What is the ALE for this attack against this server?

seenagapeMarch 25, 2015 Leave a comment

Your organization assigns an Annual Loss Expectancy to assets during a risk analysis meeting.
You have a server which if down for a day will lose the company $35,000, and has a serious root
access attack against it once per month. What is the ALE for this attack against this server?

Who should ensure that this evidence is available?

seenagapeMarch 25, 2015 Leave a comment

During an audit, evidence is required for Service Management policies, plans and procedures.
Who should ensure that this evidence is available?

Which of the following best describes the Repair Model?

seenagapeMarch 25, 2015 Leave a comment

Which of the following best describes the Repair Model?

What purpose does implementation of a Quality Management System as per ISO/IEC 20000 serve?

seenagapeMarch 25, 2015 Leave a comment

What purpose does implementation of a Quality Management System as per ISO/IEC 20000
serve?

Which of the following has the stages of Risk Analysis in order, from a to e?

seenagapeMarch 25, 2015 Leave a comment

Which of the following has the stages of Risk Analysis in order, from a to e?
a. Management
b. Threat Assessment
c. Control Evaluation
d. Inventory
e. Monitoring

What is the aim of an internal audit?

seenagapeMarch 25, 2015 Leave a comment

What is the aim of an internal audit?

Which is considered to be the major factor in determining a specific control system to implement?

seenagapeMarch 25, 2015 Leave a comment

You have just recently finished a complete Risk Analysis of your organization. During your
presentation you present the controls you feel must be implemented. Which is considered to be
the major factor in determining a specific control system to implement?

what is the minimum frequency for the Service Provider and the Customer to attend a service review meeting for

seenagapeMarch 25, 2015 Leave a comment

According to ISO/IEC 20000, what is the minimum frequency for the Service Provider and the
Customer to attend a service review meeting for discussing changes to the service scope?

Page 401 of 897« First «...10 20 30...399 400401402 403...410 420 430...»Last »

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

EXIN Exam Questions

Free EXIN Study Guide

Author: seenagape

Which of the following best describes the FRAP method of risk analysis?

What purpose can the ISO/IEC 20000 standard serve?

What is the ALE for this attack against this server?

Who should ensure that this evidence is available?

Which of the following best describes the Repair Model?

What purpose does implementation of a Quality Management System as per ISO/IEC 20000 serve?

Which of the following has the stages of Risk Analysis in order, from a to e?

What is the aim of an internal audit?

Which is considered to be the major factor in determining a specific control system to implement?

what is the minimum frequency for the Service Provider and the Customer to attend a service review meeting for