Certified Secure Software Lifecycle Professional (CSSLP) — Question 86

Which of the following activities are performed by the 'Do' cycle component of PDCA (plan-do-check-act)? Each correct answer represents a complete solution.
Choose all that apply.

Answer options

• A. It detects and responds to incidents properly.
• B. It determines controls and their objectives.
• C. It manages resources that are required to achieve a goal.
• D. It performs security awareness training.
• E. It operates the selected controls.

Correct answer: B

Explanation

The correct answer is B because the 'Do' cycle focuses on implementing the planned controls and defining their objectives. Options A, C, D, and E describe activities that may occur in other phases of the PDCA cycle or are not specifically part of the 'Do' phase.