FITSP

NIST SP 800-53 correct answer: Its primary goal and objective is to ensure that appropriate security requirements and security controls are applied to all U.S. Federal Government information and information management systems. NIST SP 800-60 correct answer: Guide for Mapping Types of Information and Information Systems to Security Categories NIST SP 800-37 correct answer: Risk Management Framework NIST SP 800-137 correct answer: Guidance for monitoring the Security Controls NIST ...

___________________________ is a part of the U.S. Department of Commerce, and it includes an Information Technology Laboratory (ITL). correct answer: NIST National Institute of Standards and Technology. What does TIC stand for? correct answer: Trusted Internet Connection What does USA Patriot Act stand for? correct answer: United & Strengthening America by providing appropriate tools required to intercept and obstruct terrorism What does FISMA stand for? correct answer: Federal Info...

The following legislation requires federal agencies to develop, document and implement an agency-wide information security program: correct answer: FISMA The following legislation requires each agency with an Inspector General to conduct an annual evaluation of agency's information security program, or to appoint an independent external auditor, to conduct the evaluation on their behalf correct answer: E-Government Act of 2002, Section 208 The following OMB guidance established the requ...

this legislation requires Federal agencies to develop document and implement an agency wide information security program correct answer: Clinger-Cohen What are the six steps of the RMF correct answer: Categorize Select Implement Assess Authorize Monitor What is the term used to evaluate operational information systems against the RMF, to determine the security controls in place and the requirements to mitigate risk at a acceptable level? correct answer: Gap Anaylsis What is the ...

What elements are components of an information system? correct answer: OMB Circular A-130, App III: "A system normally includes hardware, software, information, data, applications, communications, and people." What are some of the threats that the information system faces? correct answer: NIST SP 800-39rl, p. 1: "Threats to information and information systems can include purposeful attacks, environmental disruptions, and human/machine errors and result in great harm to the national and e...

800-12 correct answer: NIST Handbook (Data Security, Maint, Personnel, Physical Security) 800-92 correct answer: Guide to Computer Log Mgmt (Log Mgmt) 800-53 correct answer: Security Controls for Federal IT Systems (Log Mgmt) -18 Control Families -3 Subcategories- Management, Technical, Operational -LOW, MEDIUM, HIGH 800-66 correct answer: Intro to Resource Guide for HIPPA (Log Mgmt) (RMF) 800-16 correct answer: IT Security Training Requirements (Awareness) 800-50 correct...

The following legislation requires federal agencies to establish capital planning and investment control policies and procedures when procuring information technology: a) E-Government Act of 2002 b) Federal Information Security Management Act (FISMA) c) Government Information Security Reform Act (GISRA) d) Clinger-Cohen Act correct answer: Clinger-Cohen Act The following legislation requires federal agencies to appoint a Chief Information Officer: a) E-Government Act of 2002 b) Federal...

The following legislation requires federal agencies to establish capital planning and investment control policies and procedures when procuring information technology: a) E-Government Act of 2002 b) Federal Information Security Management Act (FISMA) c) Government Information Security Reform Act (GISRA) d) Clinger-Cohen Act - Clinger-Cohen Act The following legislation requires federal agencies to appoint a Chief Information Officer: a) E-Government Act of 2002 b) Federal Information Se...

__ is a part of the U.S. Department of Commerce, and it includes an Information Technology Laboratory (ITL). - NIST National Institute of Standards and Technology. What does TIC stand for? - Trusted Internet Connection What does USA Patriot Act stand for? - United & Strengthening America by providing appropriate tools required to intercept and obstruct terrorism What does FISMA stand for? - Federal Information Security Management Act (2002) -Passed to improve the security and privacy of s...