Gap Analysis

Question 1

Process of evaluating the differences between an organization’s current performance and its desired performance

Answer 1

Gap Analysis

Question 2

Conducting a gap analysis can be a valuable tool for organizations looking to improve their operations, processes, performance, or overall security posture

Answer 2

TRUE

Question 3

■ Define the scope of the analysis
■ Gather data on the current state of the organization
■ Analyze the data to identify any areas where the organization’s current performance falls short of its desired performance
■ Develop a plan to bridge the gap

Answer 3

Steps for conducting a gap analysis

Question 4

Technical Gap Analysis, Business Gap Analysis

Answer 4

2 Basic Types of Gap Analysis

Question 5

Involves evaluating an organization’s current technical infrastructure
Identifying any areas where it falls short of the technical capabilities
required to fully utilize their security solutions

Answer 5

Technical Gap Analysis

Question 6

Involves evaluating an organization’s current business processes
Identifying any areas where they fall short of the capabilities required to
fully utilize cloud-based solutions

Answer 6

Business Gap Analysis

Question 7

Outlines the specific measures to address each vulnerability
Allocate resources
Set up timelines for each remediation task that is needed

Answer 7

Plan of Action and Milestones (POA&M)