Package deal
ISSEP Questions and Correct Answers the Latest Update
ISSEP Questions and Correct Answers the Latest Update
[Show more]ISSEP Questions and Correct Answers the Latest Update
[Show more]CNSSP No. 22 
 This Committee on National Security Systems Policy (CNSSP) establishes the requirements 
for enterprise IA risk management within the national security community, which requires a 
holistic view of the IA risks to National Security Systems (NSS) operating within the 
enterprise usi...
Preview 3 out of 19 pages
Add to cartCNSSP No. 22 
 This Committee on National Security Systems Policy (CNSSP) establishes the requirements 
for enterprise IA risk management within the national security community, which requires a 
holistic view of the IA risks to National Security Systems (NSS) operating within the 
enterprise usi...
What are the activities in the ISSE per IATF App J? 
 Discover Info Protection Needs, 
 Define System Security Reqts, 
 Design System Security Architecture, 
 Develop Detailed Security Design, 
 Implement System Security, 
 Assess Info Protection Effectiveness, 
 Plan Technical Effort, Managemen...
Preview 3 out of 23 pages
Add to cartWhat are the activities in the ISSE per IATF App J? 
 Discover Info Protection Needs, 
 Define System Security Reqts, 
 Design System Security Architecture, 
 Develop Detailed Security Design, 
 Implement System Security, 
 Assess Info Protection Effectiveness, 
 Plan Technical Effort, Managemen...
SSE Process 
 - Discover Information Protection Needs 
 - Define System Security Requirements 
 - Design System Security Architecture 
 - Develop Detailed Security Design 
 - Implement System Security 
 - Assess Information Protection Effectiveness 
Information Management Needs Model 
 - model defin...
Preview 4 out of 33 pages
Add to cartSSE Process 
 - Discover Information Protection Needs 
 - Define System Security Requirements 
 - Design System Security Architecture 
 - Develop Detailed Security Design 
 - Implement System Security 
 - Assess Information Protection Effectiveness 
Information Management Needs Model 
 - model defin...
Discover Information Needs Tasks 
 1.1 Analyze organization mission 
 1.2 Determine relationship and importance of information to mision 
 1.3 Identify leagl and regualtory requirements 
 1.4 Identify classes of threats 
 1.5 Determine impacts 
 1.6 Identify security services 
 1.7 Document the info...
Preview 3 out of 18 pages
Add to cartDiscover Information Needs Tasks 
 1.1 Analyze organization mission 
 1.2 Determine relationship and importance of information to mision 
 1.3 Identify leagl and regualtory requirements 
 1.4 Identify classes of threats 
 1.5 Determine impacts 
 1.6 Identify security services 
 1.7 Document the info...
FITSAF 
 Level 1: The first level reflects that an asset has documented a security policy. 
 Level 2: The second level shows that the asset has documented procedures and controls to 
implement the policy. 
 Level 3: The third level indicates that these procedures and controls have been 
implemente...
Preview 2 out of 5 pages
Add to cartFITSAF 
 Level 1: The first level reflects that an asset has documented a security policy. 
 Level 2: The second level shows that the asset has documented procedures and controls to 
implement the policy. 
 Level 3: The third level indicates that these procedures and controls have been 
implemente...
What is ISSE activity 1? 
 Informaton Protection Needs 
What is ISSE activity 2? 
 Define System Security Requirments 
What is ISSE activity 3? 
 Design System Security Architecture 
What is ISSE activity 4? 
 Develop Detailed Security Design 
What is ISSE activity 5? 
 Implement System Security 
Wh...
Preview 3 out of 22 pages
Add to cartWhat is ISSE activity 1? 
 Informaton Protection Needs 
What is ISSE activity 2? 
 Define System Security Requirments 
What is ISSE activity 3? 
 Design System Security Architecture 
What is ISSE activity 4? 
 Develop Detailed Security Design 
What is ISSE activity 5? 
 Implement System Security 
Wh...
SDLC Phases 
 - Initiation (need for system is expressed and documented) 
 - Development/Acquisition : system designed, purchased, and developed 
 - Implementation/Assessment 
 - Operation/Maintenance 
 - Disposal 
CNSSP 14 
 Release of security information to contractors and other non government pe...
Preview 3 out of 17 pages
Add to cartSDLC Phases 
 - Initiation (need for system is expressed and documented) 
 - Development/Acquisition : system designed, purchased, and developed 
 - Implementation/Assessment 
 - Operation/Maintenance 
 - Disposal 
CNSSP 14 
 Release of security information to contractors and other non government pe...
E.O. 13231 Directs which actions 
 -Protection of information systems as components of CI 
 -Protection of emergency preparedness communications 
 -Protection of supporting physical assets 
E.O. 13231 assigns these responisbilities 
 -Director, OMB to develop and oversee the implementation of govern...
Preview 4 out of 37 pages
Add to cartE.O. 13231 Directs which actions 
 -Protection of information systems as components of CI 
 -Protection of emergency preparedness communications 
 -Protection of supporting physical assets 
E.O. 13231 assigns these responisbilities 
 -Director, OMB to develop and oversee the implementation of govern...
Architecture 
 A set for related physical and logical representations (i.e., views) of a system or a 
solution. The architecture conveys information about the system/solution elements, 
interconnections, relationships, and behavior at different levels of abstractions and with 
different scopes. 
...
Preview 3 out of 22 pages
Add to cartArchitecture 
 A set for related physical and logical representations (i.e., views) of a system or a 
solution. The architecture conveys information about the system/solution elements, 
interconnections, relationships, and behavior at different levels of abstractions and with 
different scopes. 
...
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Stuvia is a marketplace, so you are not buying this document from us, but from seller TestTrackers. Stuvia facilitates payment to the seller.
No, you only buy these notes for $46.71. You're not tied to anything after your purchase.
4.6 stars on Google & Trustpilot (+1000 reviews)
71184 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now