Exam CTPRP Topic 1 Question 37 Discussion
Actual exam question for Shared Assessments's CTPRP exam
Question #: 37
Topic #: 1
Question #: 37
Topic #: 1
Which factor is less important when reviewing application risk for application service providers?
Suggested Answer: B Vote an answer
When reviewing application risk for application service providers, the most important factors are the functionality and type of data the application processes, the remote connectivity options, and the APl integration methods. These factors determine the level of exposure, sensitivity, and complexity of the application, and thus the potential impact and likelihood of a security breach or a compliance violation. The number of software releases is less important, as it does not directly affect the application's security or functionality. However, it may indicate the maturity and quality of the software development process, which is another aspect of application risk assessment. References:
* Application Security Risk: Assessment and Modeling, ISACA Journal, Volume 2, 2016
* Application Security Risk: Assessment and Modeling, ISACA Journal, Volume 2, 2016
by Tim at Jan 26, 2026, 06:12 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).