True or false the rmf - Study guides, Class notes & Summaries

The following legislation requires federal agencies to establish capital planning and investment control policies and procedures when procuring information technology: a) E-Government Act of 2002 b) Federal Information Security Management Act (FISMA) c) Government Information Security Reform Act (GISRA) d) Clinger-Cohen Act - Answer- Clinger-Cohen Act The following legislation requires federal agencies to appoint a Chief Information Officer: a) E-Government Act of 2002 b) Federal Inform...

1. An assessment object for each security control, which identifies the specific control items being assessed and testing techniques, can be found in which document? a) NIST Special Publication 800-37 Revision 1, Guide for Applying the Risk Management Framework to Federal Information Systems b) NIST Special Publication 800-53 Revision 4, Recommended Security Controls for Federal Information Systems and Organizations c) NIST Special Publication 800-53A Revision 4, Guide for Assessing the Sec...

Information security architecture often relies on boundaries outside the computer to protect important information or programs from error prone or malicious programs. - ANSWER False A security analyst is performing a security assessment. The analyst should not: - ANSWER Take actions to mitigate a serious risk A rational security decision, such as locking your vehicle when not in use, is an example of: - ANSWER reasoned paranoia - ANSWER 3 What is a worm? - ANSWER Malware A vulner...

DAU ISA 101 Module 13 Test 1 Critical Requirements: Safety, Security, and Privacy Exam Here is your test result.The dots represent the choices you have made. The highlighted questions are the questions you have missed. Remediation Accessed shows whether you accessed those links.'N' represents links not visited and 'Y' represents visited links. Back to Status page contains 16 Questions 1) What are some characteristics of the Program Protection Plan (PPP)? Select Three (3...