CCSP | Standards & Frameworks questions with correct answers
ISO/IEC 17788:2014 CORRECT ANSWER Terms and definitions for cloud computing ISO/IEC 27001:2005 CORRECT ANSWER Old - outlines steps to create an ISMS (information security management system) ISO/IEC 27001:2013 CORRECT ANSWER Framework of domains for formal risk assessment program that defines an ISMS. (It is widely used) InfoSec policy, organization, human, asset, access, crypto, physical/environmental, ops, comms, acquisition/dev/maint, supplier, incident management, BC, compliance. PCI DSS CORRECT ANSWER ISO/IEC 27018 CORRECT ANSWER Practices for protection of PII in public clouds ISO/IEC 27050:2016 CORRECT ANSWER Standard for eDiscovery processes and best practices. Process = identification, preservation, collection, processing, review, analysis, and production. Data is produced, stored, shared, and destroyed. ISO/IEC 31000:2009 CORRECT ANSWER Risk Management guide and framework (RMF) to design and implement a risk management program. 11 principles. Protect value, all aspects of organization, part of all org decisions, RM mitigates uncertainty, integrated efficiently with processes, uses accurate data, tailored to business needs, include human elements, transparent, flexible, continual improvements.
Written for
- Institution
- Ccsp
- Course
- Ccsp
Document information
- Uploaded on
- March 7, 2023
- Number of pages
- 5
- Written in
- 2022/2023
- Type
- Exam (elaborations)
- Contains
- Questions & answers
Subjects
-
ccsp | standards amp frameworks questions with correct answers
Also available in package deal
