Certified Information Systems Security Professional (CISSP) — Question 201

Which of the following are key activities when conducting a security assessment?

Answer options

• A. Schedule, collect, examine
• B. Interview, examine, simulate
• C. Collect, interview, test
• D. Examine, interview, test

Correct answer: D

Explanation

The correct answer is D because examining, interviewing, and testing are essential steps in a security assessment process. Options A, B, and C include activities that are not typically recognized as core components of a security assessment, making them less relevant.