Risk Assessment — CompTIA PenTest+ (PT0-002) Practice Questions
Risk assessment in the PenTest+ framework involves identifying, analyzing, and prioritizing threats and vulnerabilities within a target environment before and during an engagement. Testers must understand how to evaluate the likelihood and impact of discovered weaknesses so findings can be communicated in business terms to stakeholders. PT0-002 expects candidates to apply risk scoring methodologies such as CVSS and to map technical findings to organizational risk. This knowledge directly supports the planning and scoping phases and the final report deliverable.
Free questions on risk assessment
What does CVSS stand for?
Free question · easy · full answer + explanation
More risk assessment questions in the full bank
- A client wants you to test their backup systems during business hours. What should you do FIRST? Unlock answer & explanation →
- What does the CVSS score measure? Unlock answer & explanation →
- How should vulnerabilities be prioritized in a penetration test report? Unlock answer & explanation →