Which of the following tools demands involvement by upper executives, in order to integrate quality into the business system and avoid delegation of quality functions to junior administrators
A. ISO 90012000
B. Benchmarking
C. SEI-CMM
D. Six Sigma
Which of the following policies describes the national policy on the secure electronic messaging service
A. NSTISSP No. 11
B. NSTISSP No. 7
C. NSTISSP No. 6
D. NSTISSP No. 101
What are the subordinate tasks of the Implement and Validate Assigned IA Control phase in the DIACAP process Each correct answer represents a complete solution. Choose all that apply.
A. Conduct activities related to the disposition of the system data and objects.
B. Combine validation results in DIACAP scorecard.
C. Conduct validation activities.
D. Execute and update IA implementation plan.
Which of the following organizations incorporates building secure audio and video communications equipment, making tamper protection products, and providing trusted microelectronics solutions
A. DTIC
B. NSA IAD
C. DIAP
D. DARPA
Certification and Accreditation (CandA or CnA) is a process for implementing information security. Which of the following is the correct order of CandA phases in a DITSCAP assessment
A. Definition, Validation, Verification, and Post Accreditation
B. Verification, Definition, Validation, and Post Accreditation
C. Verification, Validation, Definition, and Post Accreditation
D. Definition, Verification, Validation, and Post Accreditation
Which of the following is a temporary approval to operate based on an assessment of the implementation status of the assigned IA Controls
A. IATO
B. DATO
C. ATO
D. IATT
Della works as a security engineer for BlueWell Inc. She wants to establish configuration management and control procedures that will document proposed or actual changes to the information system. Which of the following phases of NIST SP 800-37 CandA methodology will define the above task
A. Security Certification
B. Security Accreditation
C. Initiation
D. Continuous Monitoring
Which of the following rated systems of the Orange book has mandatory protection of the TCB
A. C-rated
B. B-rated
C. D-rated
D. A-rated