2023 fitsp a nist sp - Study guides, Class notes & Summaries

FITSP-A Question and answers 2023/2024 verified to passWhat elements are components of an information system? - correct answer OMB Circular A-130, App III: "A system normally includes hardware, software, information, data, applications, communications, and people." What are some of the threats that the information system faces? - correct answer NIST SP 800-39rl, p. 1: "Threats to information and information systems can include purposeful attacks, environmental disruptions, and human/machin...

FITSP-A Module 10 Questions with complete solution 2023/20241. What is defined as a simulation of an emergency designed to validate the viability of one or more aspects of an ISCP? a) ISCP Test b) ISCP Exercise c) ISCP Training d) ISCP Drill - correct answer Correct answer: b) ISCP Exercise NIST SP 800-34rl, Paragraph 3.5.3 states: "An exercise is a simulation of an emergency designed to validate the viability of one or more aspects of an ISCP." Incorrect answers: a) ISCP Testing t...

FITSP-A Module 9 Question and answers rated A+ 2023/2024 1. All of the following are considered remote access, EXCEPT: a) Dial-up b) Broadband c) VPN d) Wireless - correct answer Correct answer: c) VPN NIST SP 800-53r4, Control AC-17, Supplemental Guidance states: "Remote access methods include, for example, dial-up, broadband, and wireless. Organizations often employ encrypted virtual private networks (VPNs) to enhance confidentiality and integrity over remote connections." Incorr...

FITSP-A Module 8 Question and answers 100% correct 2023/2024 1. The implementation of a continuous monitoring program results in ongoing updates to all of the following documents, EXCEPT: a) Security Plan b) Security Assessment Plan c) Security Assessment Report d) Plan of Action & Milestones - correct answer Correct answer: b) Security Assessment Plan NIST SP 800-137, Chapter 1 states: "Frequent updates to security plans, security assessment reports, plans of action and milestones, h...

FITSP-A NIST Special Publications (Main) Question and answers correctly solved 2023/2024NIST SP 800-53 - correct answer Its primary goal and objective is to ensure that appropriate security requirements and security controls are applied to all U.S. Federal Government information and information management systems. NIST SP 800-60 - correct answer Guide for Mapping Types of Information and Information Systems to Security Categories NIST SP 800-37 - correct answer Risk Management Framework ...

FITSP-A Module 9 question and answers rated A+ 2023 Passed1. All of the following are considered remote access, EXCEPT: a) Dial-up b) Broadband c) VPN d) Wireless - correct answer Correct answer: c) VPN NIST SP 800-53r4, Control AC-17, Supplemental Guidance states: "Remote access methods include, for example, dial-up, broadband, and wireless. Organizations often employ encrypted virtual private networks (VPNs) to enhance confidentiality and integrity over remote connections." Incor...

FITSP-A Module 8 question and answers rated A+ 2023 LATEST UPDATE 1. The implementation of a continuous monitoring program results in ongoing updates to all of the following documents, EXCEPT: a) Security Plan b) Security Assessment Plan c) Security Assessment Report d) Plan of Action & Milestones - correct answer Correct answer: b) Security Assessment Plan NIST SP 800-137, Chapter 1 states: "Frequent updates to security plans, security assessment reports, plans of action and mileston...