In the last 15 years a company has experienced three electrical failures. The cost associated with each failure is listed below. Which of the following would be a reasonable annual loss expectation?
ALE = ARO x SLE
ARO = (Number of Failures) / (Number of Years)
ARO = 3 / 15
ARO = 0.2 (per year)
Total SLE = 70,000
Therefore, ALE is 0.2 x 70,000 = 14,000
...so lets just sitback an imagine if ExamTopics gave the correct suggested answer 100% of the time...EVERYONE WOULD PASS!!...then the significance of having a CISSP certification would carry much less meaning. Some people will choose this suggested answer on the test through memorization. Just saying
C is the answer
Breakdown:
There have been 3 electrical failures over 15 years
Each failure cost:
Availability: $60,000
Integrity: $10,000
Confidentiality: $0
Total Impact: $70,000
To calculate the Annualized Loss Expectancy (ALE):
There have been 3 failures in 15 years
So the estimated frequency is 3/15 = 0.2 failures per year
The cost per failure is $70,000
So the ALE is:
ALE = Annualized frequency x Cost per failure
ALE = 0.2 x $70,000 = $14,000
Therefore, with a frequency of 0.2 failures per year, and a cost of $70,000 per failure, the reasonable annual loss expectation is $14,000.
If the company has implemented measures that reduce the impact of each failure by 25% and the total impact is $70,000, then the adjusted impact of each failure would be $17,500.
Using ARO of 0.2 failures per year, we can calculate ALE (annual loss expectation) as:
ALE = 0.2 x $17,500 = $3,500
This is the only logic I see to get to their answer (A) but they didn't mention anything about any measures to reduce the impact so answer C is the correct one.
Moderators,
Can you fix the answer on this or explain why $3,500 is the answer?
Straight from CISSP Sixth edition:
The Annualized Loss Expectancy (ALE) is the expected loss from each
identified threat on an annual basis. It is equal to the likelihood times the impact:
ALE = ARO * SLE.
This section is not available anymore. Please use the main Exam Page.CISSP Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Nabs1
Highly Voted 2 years, 1 month agobrb77
2 years agojackdryan
1 year, 5 months agostickerbush1970
Highly Voted 2 years, 1 month agoSoleandheel
Most Recent 10 months, 1 week agoSoleandheel
10 months, 1 week agoshmoeee
10 months, 3 weeks agodm808
7 months agoInclusiveSTEAM
1 year agocsco10320953
1 year, 6 months agoRollingalx
1 year, 8 months agoBerto
1 year, 8 months agoNcoa
2 years agoygc
2 years agoBP_lobster
1 year, 10 months agoDelab202
1 year, 9 months agoJamati
1 year, 11 months ago4ssk
2 years agoHanzoShimada
2 years agoNcoa
2 years ago