1. What is defined as a simulation of an emergency designed to validate the viability of one or more aspects of an ISCP?
a) ISCP Test
b) ISCP Exercise
c) ISCP Training
d) ISCP Drill - ANSWER Correct answer: b) ISCP Exercise
NIST SP 800-34rl, Paragraph 3.5.3 states: "An exercise is a simula...
FITSP-A Module 10
COMPLETE QUESTIONS
& SOLUTIONS (2024
LATEST
UPDATE)CORRECT
100%
1. What is defined as a simulation of an emergency designed to validate the viability of one or more
aspects of an ISCP?
a) ISCP Test
b) ISCP Exercise
c) ISCP Training
d) ISCP Drill - ANSWER Correct answer: b) ISCP Exercise
NIST SP 800-34rl, Paragraph 3.5.3 states: "An exercise is a simulation of an emergency designed to
validate the viability of one or more aspects of an ISCP."
, Incorrect answers: a) ISCP Testing takes many forms, but is not necessarily scenario-based; c) ISCP
Training is focused on preparing personnel to participate in tests and exercises; d) ISCP Drill is a term not
generally used.
2. What is the US-CERT incident category name and reporting timeframe for a CAT-3 incident?
a) Denial of Service/2 hours
b) Malicious Code/Daily
c) Unauthorized Scan/Monthly
d) Inappropriate Usage/Daily - ANSWER Correct answer: b) Malicious Code/Daily
The Federal Incident Reporting Guidelines on the US-CERT web site Federal Agencies Incident Categories
table includes: "CAT 3: Malicious Code - Successful installation of malicious software (e.g., virus, worm,
Trojan horse, or other code-based malicious entity) that infects an operating system or application.
Agencies are NOT required to report malicious logic that has been successfully quarantined by antivirus
(AV) software. Reporting Timeframe: Daily (Note: Within one (1) hour of discovery/detection if
widespread across agency.)"
Incorrect answers: a) is Cat 2; c) is CAT 5; d) is CAT 4.
3. Use of commonly recognized identifiers from the start of the acquisition process provides a common
taxonomy for the component inventory to track components throughout the entire SDLC (i.e., from
acquisition to retirement). Which of the following SCAP specifications provide a standard naming
convention for operating systems, hardware, and applications for the purpose of providing consistent,
easily parsed names?
a) CPE
b) CVE
c) CCE
d) CWE - ANSWER Correct answer: a) CPE
NIST SP 800-128, Paragraph 3.1.2 states: "Specifying components by a commonly recognized identifier
such as the Common Platform Enumeration (CPE) can facilitate interchange of data among SCAP-
, compliant tools. ... Use of commonly recognized identifiers from the start of the acquisition process
provides a common taxonomy for the component inventory to track components throughout the entire
SDLC (i.e., from acquisition to retirement)."
Incorrect answers: b) CVE is nomenclature of flaws; c) CCE is nomenclature of security issues; d) CWE is
the common weakness enumeration specification
4. This contingency planning variable defines the maximum amount of time that a system resource can
remain unavailable before there is an unacceptable impact on other system resources, supported
mission/business functions, and the MTD.
a) RPO
b) MTTF
c) RFP
d) RTO - ANSWER Correct answer: d) RTO
NIST SP 800-34rl, Paragraph 3.2.1 states: "Recovery Time Objective (RTO). RTO defines the maximum
amount of time that a system resource can remain unavailable before there is an unacceptable impact
on other system resources, supported mission/business processes, and the MTD."
Incorrect answers: a) is the point in time to which data can be recovered after an outage; b) is the mean-
time-to-failure; c) usually refers to "request for proposal" and is not an acronym used in contingency
planning.
NIST SP 800-53r4, PE-17 Alternate Work Site, Supplemental Guidance states: "Alternate work sites may
include, for example, government facilities or private residences of employees."
Incorrect answers: b) per the supplemental guidance, residences are included.
8. What type of contingency alternate site has all the resources required to assume full processing in
case of the loss of the primary site, but there may be a short delay before becoming fully operational?
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller shantelleG. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $13.49. You're not tied to anything after your purchase.
