ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 350-201 All Questions

View all questions & answers for the 350-201 exam
Go to Exam

Exam 350-201 topic 1 question 62 discussion

Actual exam question from Cisco's 350-201
Question #: 62
Topic #: 1
[All 350-201 Questions]

A company's web server availability was breached by a DDoS attack and was offline for 3 hours because it was not deemed a critical asset in the incident response playbook. Leadership has requested a risk assessment of the asset. An analyst conducted the risk assessment using the threat sources, events, and vulnerabilities. Which additional element is needed to calculate the risk?

  • A. assessment scope
  • B. event severity and likelihood
  • C. incident response playbook
  • D. risk model framework
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by SilentJay at June 22, 2022, 4:32 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
marceus
4 months, 2 weeks ago
Selected Answer: B
ChatGPT: To calculate risk, the analyst needs to determine the impact (severity) of the event and the probability (likelihood) of it occurring. This helps quantify the potential risk to the organization.
upvoted 1 times
...
27ea763
5 months ago
Selected Answer: B
I would go with B!
upvoted 1 times
...
jay_c_an
1 year ago
risk model framework is overall task. For adding one system, likelyhood.
upvoted 1 times
...
DrVoIP
1 year, 4 months ago
D -to calculate the risk, a risk model framework is needed. - ChatGPT
upvoted 1 times
...
ETSec
1 year, 5 months ago
B. Event severity and likelihood A risk assessment of the asset should include an evaluation of the event severity and likelihood. Event severity refers to the level of harm or damage that an event or incident can cause, and likelihood refers to the probability of a specific threat exploiting a specific vulnerability. By considering both of these factors, the risk assessment will provide a more complete understanding of the potential consequences of a successful attack on the web server and the likelihood that it will occur. A. assessment scope, C. incident response playbook, and D. risk model framework are important element but it's more related to the risk assessment process rather than the specific calculation of risk.
upvoted 1 times
...
SilentJay
2 years ago
According to NIST https://nvlpubs.nist.gov/nistpubs/legacy/sp/nistspecialpublication800-30r1.pdf on page 32 To conduct an assessment the following steps are required: 1) Identify threat sources and events 2) Identify vulnerabilities and predisposing conditions 3) Determine likelihood of occurrence 4) Determine magnitude of impact 5) Determine risk Answer: B
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel