New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 ISSAP Exam - Topic 6 Question 64 Discussion

Actual exam question for ISC2's ISSAP exam
Question #: 64
Topic #: 6
[All ISSAP Questions]

In software development, which of the following analysis is used to document the services and functions that have been accidentally left out, deliberately eliminated or still need to be developed?

Show Suggested Answer Hide Answer
Suggested Answer: B, C

1.Initiation

2.Security Certification

3.Security Accreditation

4.Continuous Monitoring

The C&A activities can be applied to an information system at appropriate phases in the system development life cycle by selectively tailoring

the various tasks and subtasks.

Answer options D and A are incorrect. Auditing and detection are not phases of the Certification and Accreditation process.


by Lettie at Feb 08, 2023, 07:36 PM

Limited Time Offer

25%

Off

Get Premium ISSAP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Johnetta
4 months ago
Cost-benefit analysis doesn't fit this scenario.
upvoted 0 times
...
Jacki
4 months ago
Wait, are we sure about that?
upvoted 0 times
...
Ashley
4 months ago
Gap analysis is the right term here.
upvoted 0 times
...
Charlesetta
4 months ago
I thought it was requirement analysis.
upvoted 0 times
...
Carole
4 months ago
It's definitely gap analysis!
upvoted 0 times
...
Reynalda
5 months ago
I’m leaning towards gap analysis too, but I wonder if vulnerability analysis could somehow relate to missing functions?
upvoted 0 times
...
Nydia
5 months ago
Cost-benefit analysis sounds familiar, but it seems more about financial aspects rather than documenting missing functions.
upvoted 0 times
...
Eleonora
5 months ago
I remember practicing a question about requirement analysis, but I don't think that's what this one is asking.
upvoted 0 times
...
Rolland
5 months ago
I think gap analysis is the right choice here, but I'm not completely sure. It feels like it fits the description.
upvoted 0 times
...
Beth
5 months ago
Okay, let's see. The question is asking what I should request to resolve the deployment plan issue. I think the testing plan option makes the most sense, as that would help ensure the deployment goes smoothly.
upvoted 0 times
...
Andree
5 months ago
Okay, I've got this. Since all links have 1 Gbps unreserved bandwidth initially, and the least-fill feature is enabled, CSPF will choose the paths that leave the most available bandwidth on the links. I think the answer is D.
upvoted 0 times
...
Leslee
5 months ago
Ah, I think I've got this! The Java Runtime Environment is definitely one, and the EnterpriseOne Deployment Server is another. For the third, I'm pretty sure it's the EnterpriseOne Deployment Client. I feel good about this answer.
upvoted 0 times
...
Franklyn
5 months ago
Option B looks promising - assessing whether senior management is actually supporting and promoting the internal control culture described in the report. That seems like a key step to verify the effectiveness of the controls.
upvoted 0 times
...
Devorah
10 months ago
Vulnerability analysis? Haha, that's more about finding security flaws, not missing functionality. Gap analysis is the way to go!
upvoted 0 times
Kanisha
8 months ago
A) Gap analysis
upvoted 0 times
...
King
8 months ago
Vulnerability analysis? Haha, that's more about finding security flaws, not missing functionality. Gap analysis is the way to go!
upvoted 0 times
...
Josephine
8 months ago
D) Vulnerability analysis
upvoted 0 times
...
Alonzo
8 months ago
C) Cost-benefit analysis
upvoted 0 times
...
Nobuko
8 months ago
B) Requirement analysis
upvoted 0 times
...
Ines
9 months ago
A) Gap analysis
upvoted 0 times
...
...
Fannie
10 months ago
Cost-benefit analysis? Really? That's more about weighing the pros and cons, not figuring out what's been left out.
upvoted 0 times
Makeda
8 months ago
D) Vulnerability analysis
upvoted 0 times
...
Loreta
8 months ago
C) Cost-benefit analysis
upvoted 0 times
...
Rolande
8 months ago
B) Requirement analysis
upvoted 0 times
...
Thersa
9 months ago
A) Gap analysis
upvoted 0 times
...
Domingo
9 months ago
D) Vulnerability analysis
upvoted 0 times
...
Dick
9 months ago
C) Cost-benefit analysis
upvoted 0 times
...
Olive
9 months ago
B) Requirement analysis
upvoted 0 times
...
Tammi
10 months ago
A) Gap analysis
upvoted 0 times
...
...
Shakira
10 months ago
I'm not sure, but I think it could also be B) Requirement analysis.
upvoted 0 times
...
Corrie
10 months ago
I agree with Viki, because gap analysis helps identify missing services and functions.
upvoted 0 times
...
Shawana
10 months ago
Requirement analysis? Nah, that's more about understanding the user's needs, not the unintentional gaps in the software.
upvoted 0 times
Markus
10 months ago
B) Requirement analysis
upvoted 0 times
...
Johnetta
10 months ago
A) Gap analysis
upvoted 0 times
...
...
Viki
10 months ago
I think the answer is A) Gap analysis.
upvoted 0 times
...
Talia
11 months ago
I think Gap analysis is the correct answer here. It's all about identifying the missing pieces in the software development process.
upvoted 0 times
Alex
9 months ago
Vulnerability analysis is crucial for identifying security risks in the software.
upvoted 0 times
...
Davida
10 months ago
Cost-benefit analysis helps in determining the value of each feature.
upvoted 0 times
...
Alton
10 months ago
Requirement analysis is also important to ensure all necessary functions are documented.
upvoted 0 times
...
Mayra
10 months ago
I agree, Gap analysis is essential for identifying missing components.
upvoted 0 times
...
...

Save Cancel