Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CISSP All Questions

View all questions & answers for the CISSP exam
Go to Exam

Exam CISSP topic 1 question 281 discussion

Actual exam question from ISC's CISSP
Question #: 281
Topic #: 1
[All CISSP Questions]

Which of the following is the BEST method to identify security controls that should be implemented for a web-based application while in development?

  • A. Agile software development
  • B. Secure software development
  • C. Application threat modeling
  • D. Penetration testing
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by rdy4u at Oct. 28, 2022, 4:39 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Soleandheel
11 months, 2 weeks ago
C. Application threat modeling
upvoted 1 times
...
InclusiveSTEAM
1 year, 1 month ago
The correct answer is C: Threat modeling analyzes an application's architecture, data flows, trust boundaries, etc. to systematically uncover risks and determine mitigating controls that need to be implemented. This aligns with identifying controls in development. -Agile and secure development are general methodologies, not specific analysis techniques. -Pen testing validates controls but comes after development.
upvoted 1 times
...
rdy4u
2 years, 1 month ago
Selected Answer: C
Application threat modeling visualizes an application's attack surface to identify threats and vulnerabilities that pose a risk to functionality or data. By decomposing the application architecture into its security-relevant components, teams can better understand the various threats and risks the application might face.
upvoted 1 times
jackdryan
1 year, 6 months ago
C is correct
upvoted 1 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel