CAP Free Practice Test

Which of the following methods of authentication uses finger prints to identify users?

1. A. PKI
2. B. Mutual authentication
3. C. Biometrics
4. D. Kerberos

Correct Answer: C

Gary is the project manager for his project. He and the project team have completed the qualitative risk analysis process and are about to enter the quantitative risk analysis process when Mary, the project sponsor, wants to know what quantitative risk analysis will review. Which of the following statements best defines what quantitative risk analysis will review?

1. A. The quantitative risk analysis process will analyze the effect of risk events that may substantially impact the project's competing demands.
2. B. The quantitative risk analysis reviews the results of risk identification and prepares the project for risk response management.
3. C. The quantitative risk analysis process will review risk events for their probability and impact on the project objectives.
4. D. The quantitative risk analysis seeks to determine the true cost of each identified risk event and the probability of each risk event to determine the risk exposure.

Correct Answer: A

Neil works as a project manager for SoftTech Inc. He is working with Tom, the COO of his company, on several risks within the project. Tom understands that through qualitative analysis Neil has identified many risks in the project. Tom's concern, however, is that the priority list of these risk events are sorted in "high-risk," "moderate-risk," and "low-risk" as conditions apply within the project. Tom wants to know that is there any other objective on which Neil can make the priority list for project risks. What will be Neil's reply to Tom?

1. A. Risk may be listed by the responses inthe near-term
2. B. Risks may be listed by categories
3. C. Risks may be listed by the additional analysis and response
4. D. Risks may be listed by priority separately for schedule, cost, and performance

Correct Answer: D

What are the subordinate tasks of the Initiate and Plan IA C&A phase of the DIACAP process?
Each correct answer represents a complete solution. Choose all that apply.

1. A. Develop DIACAP strategy.
2. B. Assign IA controls.
3. C. Assemble DIACAP team.
4. D. Initiate IA implementation plan.
5. E. Register system with DoD Component IA Program.
6. F. Conduct validation activity.

Correct Answer: ABCDE

According to U.S. Department of Defense (DoD) Instruction 8500.2, there are eight Information Assurance (IA) areas, and the controls are referred to as IA controls. Which of the following are among the eight areas of IA defined by DoD?
Each correct answer represents a complete solution. Choose all that apply.

1. A. VI Vulnerability and Incident Management
2. B. DC Security Design & Configuration
3. C. EC Enclave and Computing Environment
4. D. Information systems acquisition, development, and maintenance

Correct Answer: ABC