New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

PECB Exam ISO-IEC-27005-Risk-Manager Topic 3 Question 5 Discussion

Actual exam question for PECB's ISO-IEC-27005-Risk-Manager exam
Question #: 5
Topic #: 3
[All ISO-IEC-27005-Risk-Manager Questions]

According to CRAMM methodology, how is risk assessment initiated?

Show Suggested Answer Hide Answer
Suggested Answer: A

According to the CRAMM (CCTA Risk Analysis and Management Method) methodology, risk assessment begins by collecting detailed information on the system and identifying all assets that fall within the defined scope. This foundational step ensures that the assessment is comprehensive and includes all relevant assets, which could be potential targets for risk. This makes option A the correct answer.


by Shawna at Sep 11, 2024, 08:02 PM

Limited Time Offer

25%

Off

Get Premium ISO-IEC-27005-Risk-Manager Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Tasia
2 months ago
I believe determining methods and procedures for managing risks is also important in the risk assessment process.
upvoted 0 times
...
Jamey
3 months ago
Option A is the way to go. You can't put the cart before the horse, you know?
upvoted 0 times
Kassandra
1 months ago
Exactly, starting with gathering information sets the foundation for a successful risk assessment process.
upvoted 0 times
...
Mona
1 months ago
Identifying the security risks without knowing the system assets would be like putting the cart before the horse.
upvoted 0 times
...
Truman
1 months ago
It's important to know what assets are within the scope before determining methods for managing risks.
upvoted 0 times
...
Chanel
2 months ago
I agree, gathering information on the system is crucial before identifying the security risks.
upvoted 0 times
...
...
Tyra
3 months ago
I agree with option A. It's like trying to fix a car without knowing what's under the hood.
upvoted 0 times
Sonia
1 months ago
It's like building a house without a blueprint, you need to identify the assets first to understand the risks involved.
upvoted 0 times
...
Bettye
2 months ago
Definitely, gathering information on the system is crucial before moving forward with risk assessment.
upvoted 0 times
...
Bobbye
2 months ago
I think option A is the best way to start, you need to know what you're dealing with first.
upvoted 0 times
...
...
Zoila
3 months ago
Yes, that's true. Identifying security risks is crucial too, but I think it comes after gathering information on the system.
upvoted 0 times
...
Lettie
3 months ago
But isn't identifying the security risks also an important step in risk assessment?
upvoted 0 times
...
Shenika
3 months ago
Option A seems like the logical starting point. You need to know what you're dealing with before you can figure out the risks.
upvoted 0 times
Kenneth
2 months ago
Option A seems like the logical starting point. You need to know what you're dealing with before you can figure out the risks.
upvoted 0 times
...
Elbert
2 months ago
C) By determining methods and procedures for managing risks
upvoted 0 times
...
France
2 months ago
B) By identifying the security risks
upvoted 0 times
...
Paulina
2 months ago
A) By gathering information on the system and identifying assets within the scope
upvoted 0 times
...
...
Kallie
3 months ago
Definitely option A. You can't assess the risks without first understanding the system and its components.
upvoted 0 times
Aliza
3 months ago
Yes, option A is the logical first step in the risk assessment process.
upvoted 0 times
...
Glennis
3 months ago
I agree, understanding the system is crucial before assessing risks.
upvoted 0 times
...
...
Amina
3 months ago
I think option A is the correct answer. Gathering information on the system and identifying assets is the first step in risk assessment according to CRAMM.
upvoted 0 times
Frankie
2 months ago
Yes, that makes sense. Once you have that information, you can move on to identifying the security risks.
upvoted 0 times
...
Twana
2 months ago
I agree, option A is the correct answer. It's important to gather information on the system and identify assets first.
upvoted 0 times
...
Lachelle
3 months ago
I agree, option A is the correct answer. It's important to gather information on the system first.
upvoted 0 times
...
Phillip
3 months ago
Yes, that makes sense. Identifying assets within the scope is crucial for risk assessment.
upvoted 0 times
...
...
Tasia
3 months ago
I agree with Zoila, that's how CRAMM methodology starts the risk assessment process.
upvoted 0 times
...
Zoila
3 months ago
I think risk assessment is initiated by gathering information on the system and identifying assets within the scope.
upvoted 0 times
...

Save Cancel