New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 CISSP Exam - Topic 6 Question 76 Discussion

Actual exam question for ISC2's CISSP exam
Question #: 76
Topic #: 6
[All CISSP Questions]

A security professional recommends that a company integrate threat modeling into its Agile development processes. Which of the following BEST describes the benefits of this approach?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Arlene at Oct 06, 2023, 03:33 PM

Limited Time Offer

25%

Off

Get Premium CISSP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Lino
3 months ago
I thought we usually deal with threats later in the process?
upvoted 0 times
...
Cordie
3 months ago
Totally agree, catching threats early is key!
upvoted 0 times
...
Ernest
4 months ago
Wait, are we sure it improves user acceptance?
upvoted 0 times
...
Aleisha
4 months ago
I think it could actually increase development costs.
upvoted 0 times
...
Justine
4 months ago
Definitely helps address threats earlier in the SDLC!
upvoted 0 times
...
Cecily
4 months ago
I vaguely recall that threat modeling is supposed to help reduce costs, but I’m not convinced that’s the primary focus here.
upvoted 0 times
...
Karma
4 months ago
I practiced a similar question, and I think improving user acceptance of security controls is important, but it might not be the main benefit of threat modeling.
upvoted 0 times
...
Chauncey
4 months ago
I’m not entirely sure, but I feel like addressing threats later in the SDLC could lead to more issues down the line. That makes me lean away from B.
upvoted 0 times
...
Jerry
5 months ago
I remember discussing how integrating threat modeling can help identify risks early in the SDLC, so I think D might be the right choice.
upvoted 0 times
...
Justine
5 months ago
Ah, I see. Integrating threat modeling helps improve security controls and user acceptance. That makes sense - it's all about addressing security concerns upfront in the development process.
upvoted 0 times
...
Yen
5 months ago
Hmm, I'm a bit unsure about this one. I know threat modeling is important, but I'm not sure how it specifically benefits the Agile approach. I'll have to think this through carefully.
upvoted 0 times
...
Stephane
5 months ago
This question seems straightforward. I think the key is to identify the benefit that comes from integrating threat modeling into Agile development processes.
upvoted 0 times
...
Edelmira
5 months ago
Okay, I've got it. If we integrate threat modeling earlier in the Agile SDLC, we can address potential threats sooner rather than later. That's got to be the best approach.
upvoted 0 times
...
Larue
5 months ago
"Call Home" is definitely the right answer here. I remember learning about that in the lecture - it's IBM's automated system for detecting issues and alerting their support team. Feels like a straightforward question if you know the terminology.
upvoted 0 times
...
Elbert
5 months ago
Hmm, I'm a bit unsure about this one. I'll need to review the WebSocket API documentation to make sure I understand the different methods for sending data to the server.
upvoted 0 times
...
Bettina
5 months ago
An up-to-date hardening guide could be useful, but I'm not sure if that's the most critical element for automating the process. I'll need to think this through carefully.
upvoted 0 times
...
Art
10 months ago
Improving user acceptance? That's a nice-to-have, but the real benefit is catching vulnerabilities early. Option D is the way to go, no doubt about it.
upvoted 0 times
Justa
9 months ago
Silva: That's the best way to ensure a more secure application.
upvoted 0 times
...
Silva
9 months ago
User 2: Definitely, it's better to address potential threats earlier in the SDLC.
upvoted 0 times
...
Regenia
9 months ago
User 1: I agree, catching vulnerabilities early is crucial.
upvoted 0 times
...
...
Sommer
10 months ago
Haha, reducing application development costs? That's a good one! Security is an investment, not a cost-saving measure. I'll go with option D.
upvoted 0 times
Rosalind
8 months ago
User 4: Definitely, option D seems like the best choice.
upvoted 0 times
...
Enola
8 months ago
User 3: I agree, but I think addressing potential threats earlier is key.
upvoted 0 times
...
Sharmaine
9 months ago
User 2: User acceptance is important too, though.
upvoted 0 times
...
Tamra
10 months ago
User 1: Haha, reducing application development costs? That's a good one!
upvoted 0 times
...
...
Kristine
10 months ago
Option B seems incorrect. Addressing threats later in the SDLC is actually a drawback, not a benefit. Threat modeling helps shift security to the left, which is the way to go.
upvoted 0 times
...
Selene
10 months ago
Yeah, it can improve the overall security of the application.
upvoted 0 times
...
German
10 months ago
I think option D is the best answer. Addressing potential threats earlier in the SDLC is a key benefit of integrating threat modeling into Agile development. This helps identify and mitigate issues before they become more costly to fix.
upvoted 0 times
Barney
9 months ago
User 2: Definitely, it saves time and money in the long run.
upvoted 0 times
...
Milly
10 months ago
User 1: I agree, addressing threats earlier in the SDLC is crucial.
upvoted 0 times
...
...
Justine
10 months ago
I agree, it helps address potential threats earlier in the SDLC.
upvoted 0 times
...
Gretchen
11 months ago
I think integrating threat modeling into Agile development is a good idea.
upvoted 0 times
...

Save Cancel