New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

PECB Exam ISO-IEC-27005-Risk-Manager Topic 1 Question 11 Discussion

Actual exam question for PECB's ISO-IEC-27005-Risk-Manager exam
Question #: 11
Topic #: 1
[All ISO-IEC-27005-Risk-Manager Questions]

According to CRAMM methodology, how is risk assessment initiated?

Show Suggested Answer Hide Answer
Suggested Answer: A

According to the CRAMM (CCTA Risk Analysis and Management Method) methodology, risk assessment begins by collecting detailed information on the system and identifying all assets that fall within the defined scope. This foundational step ensures that the assessment is comprehensive and includes all relevant assets, which could be potential targets for risk. This makes option A the correct answer.


by Eloisa at Sep 15, 2024, 10:11 PM

Limited Time Offer

25%

Off

Get Premium ISO-IEC-27005-Risk-Manager Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Mertie
2 months ago
This question is a real head-scratcher, ain't it? I'm just gonna throw a dart and hope for the best. Security stuff is way over my head anyway.
upvoted 0 times
Carmela
1 months ago
C) By determining methods and procedures for managing risks
upvoted 0 times
...
Ellsworth
1 months ago
B) By identifying the security risks
upvoted 0 times
...
Ryann
1 months ago
A) By gathering information on the system and identifying assets within the scope
upvoted 0 times
...
...
Mirta
2 months ago
I'm going with C. Determining the methods and procedures for managing risks is key, otherwise how are you gonna actually deal with them?
upvoted 0 times
...
Erinn
2 months ago
Option A all the way, baby! Gotta know your enemy before you can defeat it. Or something like that. I dunno, I just want my certification, alright?
upvoted 0 times
...
Merrilee
2 months ago
Hmm, I dunno, I kinda like option B. Identifying the security risks first seems like a more logical approach to me. But I could be wrong, who knows?
upvoted 0 times
Glendora
1 months ago
I see your point, but I think option C is also important. Determining methods and procedures for managing risks is crucial in risk assessment.
upvoted 0 times
...
Willow
1 months ago
I agree with you, option B does seem like a logical approach. It's important to identify the security risks early on.
upvoted 0 times
...
Altha
2 months ago
I think option A makes more sense. Gathering information on the system and identifying assets seems like a good starting point.
upvoted 0 times
...
...
Moon
3 months ago
I agree, A is the way to go. Can't really manage risks if you don't know what you're working with, right?
upvoted 0 times
Marta
1 months ago
That's important too, but you need the initial information to start.
upvoted 0 times
...
Marva
1 months ago
C) By determining methods and procedures for managing risks
upvoted 0 times
...
Yuonne
1 months ago
True, but you need to know what assets you're dealing with first.
upvoted 0 times
...
Merilyn
2 months ago
B) By identifying the security risks
upvoted 0 times
...
Laura
2 months ago
Definitely, knowing what assets you have is crucial for managing risks.
upvoted 0 times
...
Tamera
2 months ago
A) By gathering information on the system and identifying assets within the scope
upvoted 0 times
...
...
Casandra
3 months ago
I think option A is the correct answer. You gotta start with gathering information on the system and identifying the assets first before you can assess the risks.
upvoted 0 times
Geraldo
2 months ago
Maybe a combination of both options A and B would be ideal for a comprehensive risk assessment.
upvoted 0 times
...
Maurine
2 months ago
I see your point, but I still think option A is the best way to initiate risk assessment.
upvoted 0 times
...
Tish
2 months ago
I think option B is also important. Identifying the security risks early on can help in the assessment process.
upvoted 0 times
...
Filiberto
2 months ago
I agree, option A makes sense. You need to know what you're dealing with before assessing the risks.
upvoted 0 times
...
...
Maia
3 months ago
I believe determining methods and procedures for managing risks comes after identifying the assets.
upvoted 0 times
...
Annice
3 months ago
I agree with Johana, that's the first step in the CRAMM methodology.
upvoted 0 times
...
Johana
3 months ago
I think risk assessment is initiated by gathering information on the system and identifying assets within the scope.
upvoted 0 times
...

Save Cancel