Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

PECB ISO-22301-Lead-Auditor Exam - Topic 3 Question 39 Discussion

Actual exam question for PECB's ISO-22301-Lead-Auditor exam
Question #: 39
Topic #: 3
[All ISO-22301-Lead-Auditor Questions]

Which of the following approach identifies potential threats to an organisation and impacts to business operations?

Show Suggested Answer Hide Answer
Suggested Answer: A

According to the ISO 22301 Auditing eBook, likelihood is defined as 'the chance of something happening, whether defined, measured or determined objectively or subjectively, qualitatively or quantitatively, and described using general terms or mathematically (such as a probability or a frequency over a given time period)'1. Likelihood is one of the factors that determine the level of risk, along with the impact or consequence of an event. The probability of a threat or risk to occur is therefore equivalent to the likelihood of that event.


by Gearldine at Jul 01, 2024, 07:38 AM

Limited Time Offer

25%

Off

Get Premium ISO-22301-Lead-Auditor Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Latrice
6 months ago
Totally agree, B is the way to go for identifying threats!
upvoted 0 times
...
Joseph
6 months ago
I’m not sure about D, seems too narrow for overall threats.
upvoted 0 times
...
Truman
6 months ago
Wait, Six Sigma? That’s more about quality, right?
upvoted 0 times
...
Jin
7 months ago
I think A could also play a role, but B is more focused.
upvoted 0 times
...
Jolanda
7 months ago
Definitely B, Business Continuity Management is all about that.
upvoted 0 times
...
Willard
7 months ago
I’m leaning towards Business Continuity Management too, but I keep mixing it up with Six Sigma. They both seem to deal with processes in some way.
upvoted 0 times
...
Nohemi
7 months ago
I feel like the ISMS Security Process could be relevant, but it doesn't seem to focus on business operations as much as the others.
upvoted 0 times
...
Larae
7 months ago
I remember a practice question about identifying threats, and I think it was related to Business Process Management. But that feels a bit off now.
upvoted 0 times
...
Deane
8 months ago
I think it might be Business Continuity Management, but I'm not entirely sure. We did cover it in class.
upvoted 0 times
...
Cherilyn
8 months ago
This is a tricky one. I'm leaning towards Business Continuity Management, but I want to double-check the definitions of the other options just to be sure I'm not missing something.
upvoted 0 times
...
Kayleigh
8 months ago
Hmm, I'm a bit unsure here. I think it could also be ISMS Security Process, which looks at information security management and risks. I'll have to think this through carefully.
upvoted 0 times
...
Julianna
8 months ago
I'm pretty sure this is asking about Business Continuity Management, which focuses on identifying potential threats and their impacts on business operations.
upvoted 0 times
...
Annabelle
8 months ago
Okay, I've got a strategy for this. I'll start by eliminating the options I'm confident are wrong, like Six Sigma Approach. Then I'll compare Business Process Management and Business Continuity Management more closely to decide between them.
upvoted 0 times
...
Latia
8 months ago
I feel pretty confident about this one. Since the auditor is looking to launch an intensive investigation if they find just one exception, Discovery sampling seems like the best approach to efficiently identify that.
upvoted 0 times
...
Venita
8 months ago
I'm leaning towards option D, the Blueliv threat exchange network. It seems to align well with the requirements of gathering threat data from various sources and using it to enhance security policies.
upvoted 0 times
...
Dino
1 year ago
I'd go with the 'Throw Everything at the Wall and See What Sticks' approach. Gotta cover all your bases, even the ones you can't see coming!
upvoted 0 times
Goldie
11 months ago
I agree, being proactive is key in protecting the organization.
upvoted 0 times
...
Ciara
11 months ago
Definitely, it's important to have a structured approach to identifying threats.
upvoted 0 times
...
Marge
11 months ago
That sounds like a risky strategy.
upvoted 0 times
...
Rosalind
11 months ago
D) ISMS Security Process
upvoted 0 times
...
Ivan
11 months ago
C) Six Sigma Approach
upvoted 0 times
...
Bobbye
12 months ago
B) Business Continuity Management
upvoted 0 times
...
Barney
1 year ago
A) Business Process Management
upvoted 0 times
...
...
Glendora
1 year ago
Business Process Management? More like Business Disaster Management, am I right? Let's go with the continuity option to be on the safe side.
upvoted 0 times
Karrie
12 months ago
ISMS Security Process is also important for protecting sensitive information within the organization.
upvoted 0 times
...
Felix
12 months ago
Business Process Management focuses on efficiency, but Business Continuity Management focuses on resilience.
upvoted 0 times
...
Valentin
1 year ago
Definitely, it's better to be prepared for any potential disasters that may come our way.
upvoted 0 times
...
Barbra
1 year ago
I agree, Business Continuity Management is crucial for ensuring operations continue in the face of threats.
upvoted 0 times
...
...
Tommy
1 year ago
ISMS Security Process? Sounds a bit too focused on just the security aspect. I'm looking for something that covers the whole business impact.
upvoted 0 times
Lina
1 year ago
B) Business Continuity Management
upvoted 0 times
...
Glenna
1 year ago
A) Business Process Management
upvoted 0 times
...
...
Dianne
1 year ago
I'm not sure, but I think D) ISMS Security Process also deals with identifying potential threats and impacts.
upvoted 0 times
...
Apolonia
1 year ago
I agree with Dortha, because BCM focuses on identifying threats and ensuring business operations continue.
upvoted 0 times
...
Gerri
1 year ago
Six Sigma? Really? I thought that was just for manufacturing processes. Doesn't sound like the right fit for this kind of problem.
upvoted 0 times
Brynn
12 months ago
D) ISMS Security Process
upvoted 0 times
...
Coral
12 months ago
C) Six Sigma Approach
upvoted 0 times
...
Dahlia
12 months ago
B) Business Continuity Management
upvoted 0 times
...
Wei
12 months ago
A) Business Process Management
upvoted 0 times
...
...
Fernanda
1 year ago
Business Continuity Management seems like the most comprehensive approach to identifying threats and impacts. Gotta be ready for anything, right?
upvoted 0 times
...
Dortha
1 year ago
I think the answer is B) Business Continuity Management.
upvoted 0 times
...

Save Cancel