100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached 4.2 TrustPilot
logo-home
Previously searched by you
Previously searched by you
logo
  • Isc2 Cap
  • Isc2 Cap
To add items to your wishlist, you must be logged in
Exam (elaborations)

Isc2 Cap Practice Test Questions: |1-50 Questions with 100% Correct Answers | Verified | Updated 2024.

Rating
-
Sold
-
Pages
10
Grade
A+
Uploaded on
11-03-2024
Written in
2023/2024

Isc2 Cap Practice Test Questions: |1-50 Questions with 100% Correct Answers | Verified | Updated 2024. 1. Continuously observing and evaluating the information system security controls during the system life cycle to determine whether changes have occurred that will negatively impact the system security" best describes which process in the certification and accreditation methodology? a. Continuous monitoring b. Continuous improvement c. Continuous management d. Continuous development Continuous monitoring 2. Which one of the following activities is not a component of the continuous monitoring process? a. Operation and maintenance b. Security control monitoring and impact analyses c. Status reporting and documentation d. Configuration management and control Operation and maintenance 3. Which one of the following publications provides details of the continuous monitoring process? a. NIST SP 800-14 b. NIST SP 800-42 c. NIST SP 800-37 d. NIST SP 800-41 NIST SP 800-37 4. Which one of the following best describes when continuous monitoring takes place? a. Before the initial system certification b. After the initial system security accreditation c. Before and after the initial system security accreditation d. During the system design phase After the initial system security accreditation 5. Which one of the following questions is not asked as part of the continuous monitoring process? a. Could any of the changes to the information system affect the current, identified vulnerabilities in the system or introduce new vulnerabilities into the system? b. if new vulnerabilities are introduced into an information system, would the resulting risk to agency operations, agency assets, or individuals be unacceptable? c. What maintenance schedule should be followed during the operation/maintenance phase of the

Show more Read less
Institution
Isc2 Cap
Course
Isc2 Cap









Whoops! We can’t load your doc right now. Try again or contact support.
Report Copyright Violation

Written for

Course
Isc2 Cap
All documents for this subject (37)

Document information

Uploaded on
March 11, 2024
Number of pages
10
Written in
2023/2024
Type
Exam (elaborations)
Contains
Questions & answers

Subjects

  • isc2 cap practice test questions 1 50 questions

Content preview

Isc2 Cap Practice Test Questions: |1-50
Questions with 100% Correct Answers |
Verified | Updated 2024.
1. Continuously observing and evaluating the information system security controls during the system
life cycle to determine whether changes have occurred that will negatively impact the system security"
best describes which process in the certification and accreditation methodology?
a. Continuous monitoring
b. Continuous improvement
c. Continuous management
d. Continuous development

Continuous monitoring

2. Which one of the following activities is not a component of the continuous monitoring process?
a. Operation and maintenance
b. Security control monitoring and impact analyses
c. Status reporting and documentation
d. Configuration management and control

Operation and maintenance

3. Which one of the following publications provides details of the continuous monitoring process?
a. NIST SP 800-14
b. NIST SP 800-42
c. NIST SP 800-37
d. NIST SP 800-41

NIST SP 800-37

4. Which one of the following best describes when continuous monitoring takes place?
a. Before the initial system certification
b. After the initial system security accreditation
c. Before and after the initial system security accreditation
d. During the system design phase

After the initial system security accreditation

5. Which one of the following questions is not asked as part of the continuous monitoring process?
a. Could any of the changes to the information system affect the current, identified vulnerabilities in
the system or introduce new vulnerabilities into the system?
b. if new vulnerabilities are introduced into an information system, would the resulting risk to agency
operations, agency assets, or individuals be unacceptable?
c. What maintenance schedule should be followed during the operation/maintenance phase of the

, information system?
d. When will the information system need to be reaccredited in accordance with federal or agency
policy?

What maintenance schedule should be followed during the operation/maintenance phase of the
information system?

6. In configuration management and control, if necessary, updates have to be made to which of the
following documents?
a. System security plan
b. System security plan and plan of action and milestones
c. Plan of action and milestones
d. System deficiency report and plan of action and milestones

System security plan and plan of action and milestones

7. Which one of the following documents should report progress made on the current outstanding
items and address vulnerabilities in the information system discovered during the security impact
analysis or security control monitoring?
a. Plan of action and milestones
b. System security plan
c. System security plan and plan of action and milestones
d. System deficiency plan

Plan of action and milestones

8. What process should be initiated when changes to the information system negatively impact the
security of the system or when a period of time has elapsed as specified by agency or federal policy?
a. Incident response
b. Systems engineering
c. Reaccreditation
d. Reclassification of data

Reaccreditation

9. What course of action is recommended when it is not feasible or possible to continuously monitor
the entirety of security controls in an information system?
a. Begin the reaccreditation process
b. Begin the recertification process
c. Enter the system development life cycle (SDLC)
d. Select subsets of controls and monitor them at intervals

Select subsets of controls and monitor them at intervals

10.Selecting controls to be monitored can be best aided by what document?
a. FIPS 199
b. NIST SP 800-37
c. FISMA
d. NIST SP 800-18
$12.99
Get access to the full document:
100% satisfaction guarantee
Immediately available after payment
Both online and in PDF
No strings attached
Get to know the seller
Seller avatar
Reputation scores are based on the amount of documents a seller has sold for a fee and the reviews they have received for those documents. There are three levels: Bronze, Silver and Gold. The better the reputation, the more your can rely on the quality of the sellers work.
ACADEMICAIDSTORE
4.1
(173)

Also available in package deal

Thumbnail
Package deal
Package deal for (ISC)2 Certified In Cybersecurity - Exam Prep Questions with 100% Correct Answers | Verified | Updated 2024. All With Complete Verified Solutions.
-
12 2024
$ 179.38 More info

Get to know the seller

Seller avatar
Reputation scores are based on the amount of documents a seller has sold for a fee and the reviews they have received for those documents. There are three levels: Bronze, Silver and Gold. The better the reputation, the more your can rely on the quality of the sellers work.
ACADEMICAIDSTORE Chamberlain College Of Nursing
View profile
Follow You need to be logged in order to follow users or courses
Sold
1195
Member since
4 year
Number of followers
889
Documents
11506
Last sold
1 day ago
ACADEMICAID STORE

Contact : Email: : I have solutions for : Nursing, Business, Economics, Accounting, statistics, chemistry, Biology and all Courses, Certifications and Subjects. Send us a message in case you need any additional information! Nursing Being my main profession line, I have essential guides that are Almost A+ graded, I am a very friendly person: If you would not agreed with my solutions I am ready for refund.

Read more Read less
4.1

173 reviews

5
95
4
29
3
28
2
6
1
15

Recently viewed by you

Thumbnail
Exam (elaborations)
Wall Street Prep Excel Shortcut Exam Questions and Answers Graded 100%
-
2024
€ 8,91 More info
Thumbnail
Exam (elaborations)
Osteomyelitis/Surgery RAPID Reasoning Gene Potts, 78 years old( Elaborations With Complete Solutions All Graded A)
-
2023
€ 8,30 More info
Thumbnail
Exam (elaborations)
ISTM 210 Chapter 1 ABCC Exam Questions and Answers 2024
-
2024
€ 9,61 More info
Thumbnail
Exam (elaborations)
PYC3703 EXAM PACK 2025 [DETAILED QUESTIONS AND ANSWERS]
5.0
(1)
4 2025
R 45,49 More info
Thumbnail
Exam (elaborations)
NUR 105 MIDTERM EXAM QUESTIONS WITH 100% CORRECT ANSWERS LATEST VERSION 2025/2026.
-
2025
R 231,59 More info
Thumbnail
Exam (elaborations)
Pharmacology Exam Study Guide Test Bank_Complete Latest 2023|Keiser University - NURSING 1140 Pharm Exam
5.0
(1)
3 2023
$ 11.49 More info
Thumbnail
Summary
Edexcel Government and Politics: Relationships with other branches essay plans
-
2023
$ 11.79 More info
Thumbnail
Exam (elaborations)
NUR 2063 | NUR2063 Exam 3 Study Guide | Essentials of Pathophysiology Rasmussen | 2024/2025 Guide
-
1 2024
€ 8,74 More info
Thumbnail
Exam (elaborations)
NUR 2488 MENTAL HEALTH NURSING FINAL EXAM 2023/2024
-
2024
$ 12.99 More info

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

Student with book image

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Frequently asked questions