Certified Incident Handler (ECIH v3) — Question 78

In NIST risk assessment/ methodology; the process of identifying the boundaries of an IT system along with the resources and information that constitute the system is known as:

Answer options

• A. Asset Identification
• B. System characterization
• C. Asset valuation
• D. System classification

Correct answer: B

Explanation

The correct answer is B, as 'System characterization' refers to defining the components and boundaries of an IT system. Option A, 'Asset Identification,' focuses on recognizing assets but does not address boundaries. Option C, 'Asset valuation,' pertains to assessing the worth of assets, while Option D, 'System classification,' involves categorizing systems rather than identifying their boundaries.