Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

PECB Exam ISO-IEC-27005-Risk-Manager Topic 3 Question 5 Discussion

Actual exam question for PECB's PECB Certified ISO/IEC 27005 Risk Manager exam
Question #: 5
Topic #: 3
[All PECB Certified ISO/IEC 27005 Risk Manager Questions]

According to CRAMM methodology, how is risk assessment initiated?

Show Suggested Answer Hide Answer
Suggested Answer: A

According to the CRAMM (CCTA Risk Analysis and Management Method) methodology, risk assessment begins by collecting detailed information on the system and identifying all assets that fall within the defined scope. This foundational step ensures that the assessment is comprehensive and includes all relevant assets, which could be potential targets for risk. This makes option A the correct answer.


Contribute your Thoughts:

Tasia
16 days ago
I believe determining methods and procedures for managing risks is also important in the risk assessment process.
upvoted 0 times
...
Jamey
25 days ago
Option A is the way to go. You can't put the cart before the horse, you know?
upvoted 0 times
Chanel
11 days ago
I agree, gathering information on the system is crucial before identifying the security risks.
upvoted 0 times
...
...
Tyra
26 days ago
I agree with option A. It's like trying to fix a car without knowing what's under the hood.
upvoted 0 times
...
Zoila
28 days ago
Yes, that's true. Identifying security risks is crucial too, but I think it comes after gathering information on the system.
upvoted 0 times
...
Lettie
1 months ago
But isn't identifying the security risks also an important step in risk assessment?
upvoted 0 times
...
Shenika
1 months ago
Option A seems like the logical starting point. You need to know what you're dealing with before you can figure out the risks.
upvoted 0 times
Kenneth
10 hours ago
Option A seems like the logical starting point. You need to know what you're dealing with before you can figure out the risks.
upvoted 0 times
...
Elbert
5 days ago
C) By determining methods and procedures for managing risks
upvoted 0 times
...
France
15 days ago
B) By identifying the security risks
upvoted 0 times
...
Paulina
23 days ago
A) By gathering information on the system and identifying assets within the scope
upvoted 0 times
...
...
Kallie
1 months ago
Definitely option A. You can't assess the risks without first understanding the system and its components.
upvoted 0 times
Aliza
24 days ago
Yes, option A is the logical first step in the risk assessment process.
upvoted 0 times
...
Glennis
26 days ago
I agree, understanding the system is crucial before assessing risks.
upvoted 0 times
...
...
Amina
2 months ago
I think option A is the correct answer. Gathering information on the system and identifying assets is the first step in risk assessment according to CRAMM.
upvoted 0 times
Frankie
21 days ago
Yes, that makes sense. Once you have that information, you can move on to identifying the security risks.
upvoted 0 times
...
Twana
22 days ago
I agree, option A is the correct answer. It's important to gather information on the system and identify assets first.
upvoted 0 times
...
Lachelle
24 days ago
I agree, option A is the correct answer. It's important to gather information on the system first.
upvoted 0 times
...
Phillip
24 days ago
Yes, that makes sense. Identifying assets within the scope is crucial for risk assessment.
upvoted 0 times
...
...
Tasia
2 months ago
I agree with Zoila, that's how CRAMM methodology starts the risk assessment process.
upvoted 0 times
...
Zoila
2 months ago
I think risk assessment is initiated by gathering information on the system and identifying assets within the scope.
upvoted 0 times
...

Save Cancel