CompTIA CASP+ (CAS-004) — Question 454

A company hired a third-party consultant to run a cybersecurity incident simulation in order to identify security gaps and prepare stakeholders for a potential incident. Which of the following best describes this activity?

Answer options

• A. Tabletop exercise
• B. Walk-through review
• C. Lessons learned
• D. Business impact analysis

Correct answer: A

Explanation

The correct answer is A, as a tabletop exercise involves discussion-based sessions where team members simulate responses to a cybersecurity incident. The other options do not pertain to this specific simulation activity: a walk-through review focuses on procedures, lessons learned refer to post-incident evaluations, and a business impact analysis assesses potential effects of disruptions.