Which of the following DITSCAP C&A phases takes place between the signing of the initial version of the SSAA and the formal accreditation of the system?

• A.Phase 4
• B.Phase 3
• C.Phase 1
• D.Phase 2

Comment: *

Name: *

Email: *

Verification: *

DRAG DROP
Drag and drop the appropriate principle documents in front of their respective functions.
Select and Place:

Correct Answer:

Explanation/Reference:
The various principle documents of transformation are as follows: CNSSP 22: It establishes a national risk management policy for national security systems. CNSSI 1199: It creates the technique in which the national security community classifies the information and information systems with regard to confidentiality, integrity, and availability. CNSSI 1253: It combines DCID 6/3, DOD Instructions 8500.2, NIST SP 800-53, and other security sources into a single cohesive repository of security controls. CNSSI
1253 A It offers the techniques to assess adequacy of each security control. CNSSI 1260: It provides guidance to organizations with the characterization of their information and information systems. NIST 800-
37, Revision 1: It defines the certification and accreditation (C & A) process. The NIST 800-37, Revision 1 is a combination of DNI, DoD, and NIST.

Comment: *

Name: *

Email: *

Verification: *

Which of the following are the types of access controls? Each correct answer represents a complete solution. Choose three.

• A.Physical
• B.Technical
• C.Administrative
• D.Automatic

Comment: *

Name: *

Email: *

Verification: *