exam questions

Exam PT0-002 All Questions

View all questions & answers for the PT0-002 exam

Exam PT0-002 topic 1 question 397 discussion

Actual exam question from CompTIA's PT0-002
Question #: 397
Topic #: 1
[All PT0-002 Questions]

Which of the following describes how a penetration tester could prioritize findings in a report?

  • A. Business mission and goats
  • B. Cyberassets
  • C. Network infrastructure
  • D. Cyberthreats
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
kinny4000
1 month, 3 weeks ago
Selected Answer: A
Gotta prioritise vulnerabilities based on the companies goals (i.e. making money - critical devices like webservers that host shops or databases with customer info / inventing things - research data must be protected above webservers). This would be discussed during the initial meeting, defining what is 'critical' or 'severe' depends on the business missions and goats.
upvoted 1 times
...
hitagitore
2 months, 1 week ago
Selected Answer: D
you have to remember you are not the CEO of the company but the security tester. it doesn't make sense for a tester (not to mention a 3rd party tester) to consider business goals.
upvoted 1 times
...
Vslaugh
2 months, 2 weeks ago
Selected Answer: A
You would prioritize findings based on how the vulnerabilities impact that client's business mission and goals, so I'm going with A
upvoted 1 times
...
Alex818119
2 months, 3 weeks ago
Selected Answer: D
Seems to make more sense
upvoted 1 times
...
PTA
4 months ago
Selected Answer: D
makes better sense
upvoted 2 times
...
fecffa8
4 months, 2 weeks ago
Selected Answer: A
Aligning security findings with the organization's business mission and goals ensures that vulnerabilities posing the greatest risk to critical operations are addressed first. This approach considers the potential impact of each vulnerability on the organization's objectives, enabling informed decision-making.
upvoted 2 times
fecffa8
4 months, 2 weeks ago
"could" is really throwing me off. A and D could both be reasons.
upvoted 1 times
...
...
mamoru
5 months, 2 weeks ago
Selected Answer: A
I'm vote for A. not all cyber threats are match with business mission
upvoted 3 times
...
b1484e5
6 months, 2 weeks ago
Selected Answer: A
I would think business missions and goals would influence prioritization
upvoted 2 times
...
Ta2oo
6 months, 2 weeks ago
Selected Answer: D
Penetration testing is all about identifying vulnerabilities. So D, prioritising by cyber threats makes sense to me.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago