Free Preparation Discussions
MENU
ISC2 CSSLP Exam - Topic 4 Question 70 Discussion
Topic #: 4
An asset with a value of $600,000 is subject to a successful malicious attack threat twice a year. The asset has an exposure of 30 percent to the threat. What will be the annualized loss expectancy?
Configuration auditing is a component of configuration management, which involves periodic checks to establish the consistency and
completeness of accounting information and to confirm that all configuration management policies are being followed. Configuration audits are
broken into functional and physical configuration audits. They occur either at delivery or at the moment of effecting the change. A functional
configuration audit ensures that functional and performance attributes of a configuration item are achieved, while a physical configuration
audit ensures that a configuration item is installed in accordance with the requirements of its detailed design documentation.
Answer D is incorrect. The configuration status accounting procedure is the ability to record and report on the configuration baselines
associated with each configuration item at any moment of time. It supports the functional and physical attributes of software at various points
in time, and performs systematic control of accounting to the identified attributes for the purpose of maintaining software integrity and
traceability throughout the software development life cycle.
Answer C is incorrect. Configuration control is a procedure of the Configuration management. Configuration control is a set of
processes and approval stages required to change a configuration item's attributes and to re-baseline them. It supports the change of the
functional and physical attributes of software at various points in time, and performs systematic control of changes to the identified attributes.
Answer A is incorrect. Configuration identification is the process of identifying the attributes that define every aspect of a configuration
item. A configuration item is a product (hardware and/or software) that has an end-user purpose. These attributes are recorded in
configuration documentation and baselined. Baselining an attribute forces formal configuration change control processes to be effected in the
event that these attributes are changed.
Bettina
5 months agoRenea
5 months agoDevorah
5 months agoHuey
5 months agoHassie
6 months agoRyann
6 months agoKandis
6 months agoIvan
6 months agoAltha
6 months agoHershel
6 months agoAdell
6 months agoDoretha
6 months agoLauran
11 months agoAmmie
11 months agoElenor
9 months agoHeike
10 months agoMelvin
10 months agoGerald
10 months agoVeronique
11 months agoDustin
10 months agoJospeh
10 months agoAmber
10 months agoRosann
12 months agoMarget
10 months agoChanel
10 months agoRaelene
10 months agoVirgina
10 months agoCarri
11 months agoShad
11 months agoLourdes
11 months agoRuthann
11 months agoRanee
12 months agoMelda
11 months agoJospeh
11 months agoYuette
12 months agoCatarina
12 months agoRyann
1 year agoArleen
1 year agoCandra
1 year agoSonia
1 year ago