CMMC CCP Practice Exam Questions
1. What is a CUI peri-
As- set? od in the fol-
2. Where do you
document a CUI
Asset?
3. What practices
do you apply to
a CUI Asset?
4. What does
CMMC stand
for?
5. How many
con- trols are
in CMMC L2?
6. What impact
lev- el is
required when
storing CUI?
7. What contract
clause is
used for
CMMC L1?
8. If you want to
be CMMC L2
com- pliant, do
you need to
also be CMMC
L1 com- pliant?
9. What do you
call the part
before the first
1/
, CMMC CCP Practice Exam Questions
Asset that stores, cument in SSP
processes, or Document in Network Diagram
transmits CUI
Examples: Servers, CMMC Level 2
Printers,
Endpoints, Cloud
Services, ERP
Systems Cybersecurity Maturity Model
D
o Certification 110 controls
c
u
m
e IL4
n
t
i
n FAR 52.204-21 (17 practices in total)
A
s
s Yes
e
t
I
n
v
e Domain
n
t
o
r
y
D
o
2/
, CMMC CCP Practice Exam Questions
lowing
control?
AC.L1-3.1.1
Level
10. What do you
call the part af-
ter the first pe-
riod in the fol-
lowing
control?
AC.L1-3.1.1 Security Practice Number
11. What do you
call the part
after the dash in
the fol- lowing
control? AC.L1- Information Access and disclosure includes
3.1.1 means for protecting personal privacy and
proprietary information.
12. What is confi-
dentiality? Stored information is sufficiently guarded against
modifi- cation or destruction.
13. What is file in-
tegrity? Low
Moderat
14. What are the e High
three levels
of FedRAMP? Privileges granted by one organization to
another for mu- tual benefit.
15. What is
reciproc- ity? Identify the specific items being assessed and
can in- clude specifications, mechanism,
16. What is an As- activities, and individu- als to receive MET for the
sessment Objec- practice as defined in NIST SP 800-171A
tive?
Means to gain detailed insight about practices
imple- mented in and by the OSC and how those
practices are performed
17. 1. Identifier and Practice Statement
3/
, CMMC CCP Practice Exam Questions
2. Assessment Objectives
4/
1. What is a CUI peri-
As- set? od in the fol-
2. Where do you
document a CUI
Asset?
3. What practices
do you apply to
a CUI Asset?
4. What does
CMMC stand
for?
5. How many
con- trols are
in CMMC L2?
6. What impact
lev- el is
required when
storing CUI?
7. What contract
clause is
used for
CMMC L1?
8. If you want to
be CMMC L2
com- pliant, do
you need to
also be CMMC
L1 com- pliant?
9. What do you
call the part
before the first
1/
, CMMC CCP Practice Exam Questions
Asset that stores, cument in SSP
processes, or Document in Network Diagram
transmits CUI
Examples: Servers, CMMC Level 2
Printers,
Endpoints, Cloud
Services, ERP
Systems Cybersecurity Maturity Model
D
o Certification 110 controls
c
u
m
e IL4
n
t
i
n FAR 52.204-21 (17 practices in total)
A
s
s Yes
e
t
I
n
v
e Domain
n
t
o
r
y
D
o
2/
, CMMC CCP Practice Exam Questions
lowing
control?
AC.L1-3.1.1
Level
10. What do you
call the part af-
ter the first pe-
riod in the fol-
lowing
control?
AC.L1-3.1.1 Security Practice Number
11. What do you
call the part
after the dash in
the fol- lowing
control? AC.L1- Information Access and disclosure includes
3.1.1 means for protecting personal privacy and
proprietary information.
12. What is confi-
dentiality? Stored information is sufficiently guarded against
modifi- cation or destruction.
13. What is file in-
tegrity? Low
Moderat
14. What are the e High
three levels
of FedRAMP? Privileges granted by one organization to
another for mu- tual benefit.
15. What is
reciproc- ity? Identify the specific items being assessed and
can in- clude specifications, mechanism,
16. What is an As- activities, and individu- als to receive MET for the
sessment Objec- practice as defined in NIST SP 800-171A
tive?
Means to gain detailed insight about practices
imple- mented in and by the OSC and how those
practices are performed
17. 1. Identifier and Practice Statement
3/
, CMMC CCP Practice Exam Questions
2. Assessment Objectives
4/
