• Home
  • Articles
  • [Dec-2021] P3 exam torrent CIMA study guide [Q128-Q143]

[Dec-2021] P3 exam torrent CIMA study guide [Q128-Q143]

Share

[Dec-2021] P3 exam torrent CIMA study guide

Use Valid New P3 Test Notes & P3 Valid Exam Guide

NEW QUESTION 128
JNH is a major corporation that stores its customer database in the Cloud JNH has suffered a data breach that has led to customer credit card details being made available for sale on the internet JNH's Head of Security wishes to analyse network traffic at the cloud-based server in order to gain a better understanding of the manner in which the data was intercepted, but has been refused access.
Which of the following is the most likely explanation for the third-party owner's refusal to assist JNH's Head of Security?

  • A. The server will contain data belonging to other clients
  • B. Admitting the breach would harm the reputation of the Cloud
  • C. The network data will not have been stored by the server's owner
  • D. The Cloud is impregnable and so the breach must have been elsewhere

Answer: A

 

NEW QUESTION 129
There are many method for appraising capital projects.
Select ALL correct statements.

  • A. All projects should be evaluated using sensitivity analysis.
  • B. The time value of money should be the same for all similar competing projects.
  • C. Opportunity cost is only relevant when capital is scarce.
  • D. Decisions should only consider the financial implications of the project.
  • E. Net Present Value evaluation considers a range of different discount rates considering different risk factors and finance methods.
  • F. No one method of capital appraisal taken alone is adequate to evaluate competing projects.

Answer: B,E,F

 

NEW QUESTION 130
Y plc, a pharmaceutical company, has dealt with a number of risks in the manner indicated below.
Use the TARA framework to classify each of Y plc's responses.

Answer:

Explanation:

 

NEW QUESTION 131
MNB is a multinational IT company with headquarters in Asia and with operations in all continents.
MNB is attempting to expand its operations in Europe. This is seen as a major challenge as the European market is very well developed and highly competitive.
MNB develops and manufactures its own products. Parts and assemblies are sourced across Asia, America and Europe. These are sometimes purchased locally as a condition of a contract, but MNB aims to include as much of its own equipment as possible. Transfer prices between MNB's subsidiaries can be set in YEN, USD, EURO, GBP. Transfer prices are revised every month in line with production times as most goods are made on short order with sales cycles running at 3-4 months.
What types of risk are being presented here?

  • A. Currency risk
  • B. Political risk
  • C. Fraud risk
  • D. Legal risk
  • E. Economic risk
  • F. Environmental risk

Answer: A,B,E

 

NEW QUESTION 132
Move the category of risk to the box beside the risk description it best matches.

Answer:

Explanation:

 

NEW QUESTION 133
An IT security consultant has been asked to conduct a forensic analysis of a client's systems after the discovery of a system breach The consultant discovered several fake user accounts that appeared to have been created by the perpetrators of the breach Before deleting the accounts, the consultant took care to copy as much detail as possible concerning the accounts.
Which TWO of the following are valid explanations for the consultant's decision to copy the details concerning the fake accounts'?

  • A. The consultant can charge more for the time spent analysing the fake accounts.
  • B. If the fake accounts reappear after deletion that will be a warning that the breach has recurred.
  • C. The client could use the account details to target a breach of the perpetrator's systems.
  • D. The details could be of value as evidence in any subsequent criminal trial.
  • E. The analysis of the accounts might help the consultant understand the motive for the breach.

Answer: D,E

 

NEW QUESTION 134
The Head of IT Security has been asked to conduct a detailed forensic analysis of a suspected data breach that ted to customer credit card details being intercepted.
Which TWO of the following would be suitable objectives for such a forensic analysis?

  • A. Recovering the stolen credit card details before they can be abused by criminals
  • B. Identifying customers whose details have been stolen
  • C. Developing an understanding of the vulnerabilities that led to the breach
  • D. The collection of evidence that can be used to convict the perpetrators of the breach.
  • E. Preventing the credit card companies from blaming the entity for fraudulent charges

Answer: B,C

 

NEW QUESTION 135
A project has a net present value of $2 million.
Total cash outflows of this project have a present value of $14 million, which includes staff costs of $10 million.
What is the project's sensitivity to staff costs?

  • A. 20%
  • B. 14%
  • C. 71%
  • D. 63%

Answer: A

 

NEW QUESTION 136
UIO sells mobile phones through a cham of 100 shops spread across the country Shop managers have considerable discretion over pncmg and the incentives offered to sales staff Shop managers are evaluated on the monthly contribution from completed sales. Those who exceed targets by more than 10% for three successive months are promoted Those who fail to achieve monthly targets in two successive months lose their jobs Which of the following statements are true of the performance management of UIO's shop managers?
Select ALL that apply.

  • A. UIO's shop managers may have very little sense of loyalty to the company
  • B. UIO's shop managers are encouraged to take risks that may harm UIO
  • C. UIO's shop managers are encouraged to sell phones at a loss
  • D. UIO's shop managers have an incentive to develop attractive sates promotions for their shops
  • E. UIO's shop managers have an incentive to offer excellent customer service

Answer: A,B,C

 

NEW QUESTION 137
The list below has duties performed by risk managers and internal auditors. Show who would carry out the duties assuming the company has both risk managers and internal auditors.

Answer:

Explanation:

 

NEW QUESTION 138
B is a small retail bank that offers customers many on-the services B is keen to ensure sound security both to protect the bank's assets and also to safeguard customer privacy B's IT Security Manager has suggested that the bank should use two phase authentication for access to the on-line systems Which TWO of the following are examples of two phase authentication?

  • A. Customer passwords must contain both letters and numbers and must be changed regularly.
  • B. Customers first input a password and then receive an access code via email or text message that also has to be input
  • C. Customers must input a valid user name and then input a password user name first input a password and then a pin number
  • D. Customers first input a password and then use a card or token to gain access

Answer: A,B

 

NEW QUESTION 139
CDE an online ticket sales agent, has unwittingly become an accomplice in cyber crime and is suffering attacks on its own business as a result CDE's website was poorly designed and cyber-attackers have managed to inject the site with malware, so that it collects all of CDE's customer log-in information and enables the cyber-attackers to retrieve it.
The cyber-attackers subsequently use this information to set up Botnet agents in the customers' devices which are then used in a Distributed Denial of Service (DDoS) attack whenever very popular tickets are being placed on sale such as international football matches.
The cyber-attackers secure access to a single portal on the site and buy multiple tickets for subsequent sale on the black market while the DDoS causes all other portals to be overloaded preventing real fans acquiring the tickets at face value.
Which TWO of the following apply in this scenario?

  • A. CDE will remain just as profitable selling to the black market as to real fans
  • B. CDE will need to implement a new firewall to prevent this type of attack.
  • C. CDE is likely to face significant fines for the breach.
  • D. CDE is likely to lose the ticket franchise for international football events
  • E. CDE customers will turn to other ticket sources for their tickets

Answer: B,C

 

NEW QUESTION 140
ZZ is a data security company that is responsible for cyber security m a large shopping mall 21 uses Network Configuration Management (NCM) to assist it in meeting the various needs of the mall's user community.
Which THREE of the following are advantages provided by NCM?

  • A. NCM allows ZZ to prevent data corruption for different user groups in the mall
  • B. NCM allows ZZ to stop malware from being spread for different user groups in the mall
  • C. NCM allows ZZ to provide different service levels for different user groups in the mall
  • D. NCM allows ZZ to prevent scanners being used on the public WiFi for different user groups in the mall
  • E. NCM allows ZZ to restrict traffic for different user groups in the mall
  • F. NCM allows ZZ to segregate traffic for different user groups in the mall

Answer: C,D,F

 

NEW QUESTION 141
RFG is considering a major expansion that will result in a more diversified business model.
At present, RFG's market capitalisation is $240 million. This is based on a beta of 1.6. The risk free rate is 4% and the market rate of return is 9%. RFG is financed entirely by equity. The company generates an annual cash surplus of $28.8 million.
The expansion will cost $50 million and will generate future cash flows of $12 million in perpetuity. This new business will reduce RFG's beta to 1.4.
Calculate the adjusted present value of the expansion.

  • A. $81 million
  • B. $321 million
  • C. $59 million
  • D. $131 million

Answer: A

 

NEW QUESTION 142
S Doc is an out-of-hours service provided by a country's government. The service allows members of the public to call and speak to a nurse who can advise on medical situations which are not obviously emergencies.
Depending on the situation the caller can be referred to the full emergency services, or be advised to go to Accident and Emergency at the nearest hospital. Alternatively, a callout from a general practitioner (GP) can be organised; the caller can be advised of where GP services are available; advice can be given over the phone; or a decision can be taken that no further action is required at least until normal services resume on the next working day.
There has been a suggestion that the nurses who take these calls could be replaced by suitably trained operatives who have available to them a specially designed expert system.
Which of the following are advantages of using an expert system instead of nurses?

  • A. The expert system will always follow the same path whereas the nurses may have more knowledge about some health issues and very little about others.
  • B. Using an expert system would make operatives less inclined to feel sorry for the caller and ensure that only relevant facts were considered in coming to a decision.
  • C. Some callers may present with complicated scenarios that a non-medically trained operative or expert system would be unable to recognise (for example, psychological issues).
  • D. The operatives would be too careful and therefore would recommend unnecessary treatments or interventions.
  • E. The use of an expert system would ensure that only relevant questions were asked of the caller and that operatives did not miss something vital due to distraction or fatigue.

Answer: A,B,E

 

NEW QUESTION 143
......

P3 Exam questions and answers: https://www.itcertmagic.com/CIMA/real-P3-exam-prep-dumps.html

P3 Actual Questions Answers PDF 100% Cover Real Exam Questions: https://drive.google.com/open?id=1zjMWHn7ntGdHi6QldFKpY6mc8HlJDwUq 

Related Articles

more
CIMA P3 Certification Practice Exam