PECB Exam ISO-IEC-27005-Risk-Manager Topic 2 Question 19 Discussion

Actual exam question for PECB's ISO-IEC-27005-Risk-Manager exam

Question #: 19
Topic #: 2

[All ISO-IEC-27005-Risk-Manager Questions]

According to ISO/IEC 27005, what is the output of the documentation of risk management processes?

AKnowledge on the information security risk assessment and treatment processes in accordance with clauses 7 and 8 of the standard

BDocumented information about the information security risk assessment and treatment results

CDocumented information that is necessary for the effectiveness of the information security risk assessment or risk treatment processes

Show Suggested Answer

Suggested Answer: B

According to ISO/IEC 27005, the output of the documentation of risk management processes should include detailed information about the results of the risk assessment and the chosen risk treatment options. This ensures transparency and provides a clear record of the decision-making process related to information security risk management. Therefore, option B is the correct answer.

by Shenika at Mar 22, 2025, 07:26 AM

Limited Time Offer

25%

Off

Get Premium ISO-IEC-27005-Risk-Manager Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Roxane

1 days ago

I'm pretty sure the answer is B. Documented information about the information security risk assessment and treatment results. Seems like the most comprehensive output to me.

upvoted 0 times

...