Which of the following processes will you involve to perform the active analysis of the system for
any potential vulnerabilities that may result from poor or improper system configuration, known
and/or unknown hardware or software flaws, or operational weaknesses in process or technical
countermeasures?

Which of the following are the responsibilities of the owner with regard to data in an information
classification program? Each correct answer represents a complete solution. Choose three.

You are the project manager for a construction project. The project involves casting of a column in
a very narrow space. Because of lack of space, casting it is highly dangerous. High technical skill
will be required for casting that column. You decide to hire a local expert team for casting that
column. Which of the following types of risk response are you following?

Which of the following models manages the software development process if the developers are
limited to go back only one stage to rework?

Mark works as a Network Administrator for NetTech Inc. He wants users to access only those
resources that are required for them. Which of the following access control models will he use?

Which of the following is a chronological record of system activities to enable the reconstruction
and examination of the sequence of events and/or changes in an event?

Which of the following DITSCAP phases validates that the preceding work has produced an IS
that operates in a specified computing environment?

How can you calculate the Annualized Loss Expectancy (ALE) that may occur due to a threat?

Which of the following terms refers to a mechanism which proves that the sender really sent a
particular message?

In which of the following levels of exception safety are operations succeeded with full guarantee
and fulfill all needs in the presence of exceptional situations?