New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

PECB ISO-22301-Lead-Auditor Exam - Topic 3 Question 39 Discussion

Actual exam question for PECB's ISO-22301-Lead-Auditor exam
Question #: 39
Topic #: 3
[All ISO-22301-Lead-Auditor Questions]

Which of the following approach identifies potential threats to an organisation and impacts to business operations?

Show Suggested Answer Hide Answer
Suggested Answer: A

According to the ISO 22301 Auditing eBook, likelihood is defined as 'the chance of something happening, whether defined, measured or determined objectively or subjectively, qualitatively or quantitatively, and described using general terms or mathematically (such as a probability or a frequency over a given time period)'1. Likelihood is one of the factors that determine the level of risk, along with the impact or consequence of an event. The probability of a threat or risk to occur is therefore equivalent to the likelihood of that event.


by Gearldine at Jul 01, 2024, 07:38 AM

Limited Time Offer

25%

Off

Get Premium ISO-22301-Lead-Auditor Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Latrice
3 months ago
Totally agree, B is the way to go for identifying threats!
upvoted 0 times
...
Joseph
3 months ago
I’m not sure about D, seems too narrow for overall threats.
upvoted 0 times
...
Truman
3 months ago
Wait, Six Sigma? That’s more about quality, right?
upvoted 0 times
...
Jin
4 months ago
I think A could also play a role, but B is more focused.
upvoted 0 times
...
Jolanda
4 months ago
Definitely B, Business Continuity Management is all about that.
upvoted 0 times
...
Willard
4 months ago
I’m leaning towards Business Continuity Management too, but I keep mixing it up with Six Sigma. They both seem to deal with processes in some way.
upvoted 0 times
...
Nohemi
4 months ago
I feel like the ISMS Security Process could be relevant, but it doesn't seem to focus on business operations as much as the others.
upvoted 0 times
...
Larae
4 months ago
I remember a practice question about identifying threats, and I think it was related to Business Process Management. But that feels a bit off now.
upvoted 0 times
...
Deane
5 months ago
I think it might be Business Continuity Management, but I'm not entirely sure. We did cover it in class.
upvoted 0 times
...
Cherilyn
5 months ago
This is a tricky one. I'm leaning towards Business Continuity Management, but I want to double-check the definitions of the other options just to be sure I'm not missing something.
upvoted 0 times
...
Kayleigh
5 months ago
Hmm, I'm a bit unsure here. I think it could also be ISMS Security Process, which looks at information security management and risks. I'll have to think this through carefully.
upvoted 0 times
...
Julianna
5 months ago
I'm pretty sure this is asking about Business Continuity Management, which focuses on identifying potential threats and their impacts on business operations.
upvoted 0 times
...
Annabelle
5 months ago
Okay, I've got a strategy for this. I'll start by eliminating the options I'm confident are wrong, like Six Sigma Approach. Then I'll compare Business Process Management and Business Continuity Management more closely to decide between them.
upvoted 0 times
...
Latia
5 months ago
I feel pretty confident about this one. Since the auditor is looking to launch an intensive investigation if they find just one exception, Discovery sampling seems like the best approach to efficiently identify that.
upvoted 0 times
...
Venita
5 months ago
I'm leaning towards option D, the Blueliv threat exchange network. It seems to align well with the requirements of gathering threat data from various sources and using it to enhance security policies.
upvoted 0 times
...
Dino
10 months ago
I'd go with the 'Throw Everything at the Wall and See What Sticks' approach. Gotta cover all your bases, even the ones you can't see coming!
upvoted 0 times
Goldie
8 months ago
I agree, being proactive is key in protecting the organization.
upvoted 0 times
...
Ciara
8 months ago
Definitely, it's important to have a structured approach to identifying threats.
upvoted 0 times
...
Marge
8 months ago
That sounds like a risky strategy.
upvoted 0 times
...
Rosalind
8 months ago
D) ISMS Security Process
upvoted 0 times
...
Ivan
8 months ago
C) Six Sigma Approach
upvoted 0 times
...
Bobbye
9 months ago
B) Business Continuity Management
upvoted 0 times
...
Barney
9 months ago
A) Business Process Management
upvoted 0 times
...
...
Glendora
10 months ago
Business Process Management? More like Business Disaster Management, am I right? Let's go with the continuity option to be on the safe side.
upvoted 0 times
Karrie
9 months ago
ISMS Security Process is also important for protecting sensitive information within the organization.
upvoted 0 times
...
Felix
9 months ago
Business Process Management focuses on efficiency, but Business Continuity Management focuses on resilience.
upvoted 0 times
...
Valentin
10 months ago
Definitely, it's better to be prepared for any potential disasters that may come our way.
upvoted 0 times
...
Barbra
10 months ago
I agree, Business Continuity Management is crucial for ensuring operations continue in the face of threats.
upvoted 0 times
...
...
Tommy
10 months ago
ISMS Security Process? Sounds a bit too focused on just the security aspect. I'm looking for something that covers the whole business impact.
upvoted 0 times
Lina
10 months ago
B) Business Continuity Management
upvoted 0 times
...
Glenna
10 months ago
A) Business Process Management
upvoted 0 times
...
...
Dianne
10 months ago
I'm not sure, but I think D) ISMS Security Process also deals with identifying potential threats and impacts.
upvoted 0 times
...
Apolonia
11 months ago
I agree with Dortha, because BCM focuses on identifying threats and ensuring business operations continue.
upvoted 0 times
...
Gerri
11 months ago
Six Sigma? Really? I thought that was just for manufacturing processes. Doesn't sound like the right fit for this kind of problem.
upvoted 0 times
Brynn
9 months ago
D) ISMS Security Process
upvoted 0 times
...
Coral
9 months ago
C) Six Sigma Approach
upvoted 0 times
...
Dahlia
9 months ago
B) Business Continuity Management
upvoted 0 times
...
Wei
9 months ago
A) Business Process Management
upvoted 0 times
...
...
Fernanda
11 months ago
Business Continuity Management seems like the most comprehensive approach to identifying threats and impacts. Gotta be ready for anything, right?
upvoted 0 times
...
Dortha
11 months ago
I think the answer is B) Business Continuity Management.
upvoted 0 times
...

Save Cancel