Fitsp a module - Study guides, Class notes & Summaries

FITSP-A Module 9

. What elements are components of an information system? a) Hardware and software b) Interconnected systems c) People d) All of the above - ANSWER Correct answer: d) All of the above OMB Circular A-130, App ill: "A system normally includes hardware, software, information, data, applications, communications, and people.' Incorrect answers: The individual choices alone do not constitute a system. Information systems must be considered in a holistic manner. 2. What are some of the threa...

FITSP-A Module 8

FITSP-A Module 7

1. Name the reporting tool, which automates Agency FISMA reporting directly to the DHS. a) FISMA b) DHS Reporting Metrics c) Cyberscope d) Cyberstat - ANSWER Correct answer: c) CyberScope. In OMB M-10-15, CyberScope was designated as the reporting tool for FISMA reporting. Incorrect answers: a) FISMA requires the reports; b) DHS Reporting Metrics indicate what must be reported; d) CyberStat refers to OMB's reviews 2. Which family of security controls is considered Tier 2? a) A...

FITSP-A Module 5 Exam Questions and Answers 1. An assessment object for each security control, which identifies the specific control items being assessed and testing techniques, can be found in which document? a) NIST Special Publication 800-37 Revision 1, Guide for Applying the Risk Management Framework to Federal Information Systems b) NIST Special Publication 800-53 Revision 4, Recommended Security Controls for Federal Information Systems and Organizations c) NIST Special Publication 8...

FITSP-A Module 4

FITSP-A Module 1 Laws and Regs Exam Questions and Answers Clinger-Cohen Act - Answer ️️ -The following legislation requires federal agencies to establish capital planning and investment control policies and procedures when procuring information technology: Clinger-Cohen Act - Answer ️️ -The following legislation requires federal agencies to appoint a Chief Information Officer: Federal Information Security Modernization Act of 2014 (FISMA) - Answer ️️ -The following legislatio...

FITSP-A Module 1 Laws and Regs Questions with complete solution 2023/2024Clinger-Cohen Act - correct answer The following legislation requires federal agencies to establish capital planning and investment control policies and procedures when procuring information technology: Clinger-Cohen Act - correct answer The following legislation requires federal agencies to appoint a Chief Information Officer: Federal Information Security Modernization Act of 2014 (FISMA) - correct answer The followi...

1. What is defined as a simulation of an emergency designed to validate the viability of one or more aspects of an ISCP? a) ISCP Test b) ISCP Exercise c) ISCP Training d) ISCP Drill - ANSWER Correct answer: b) ISCP Exercise NIST SP 800-34rl, Paragraph 3.5.3 states: "An exercise is a simulation of an emergency designed to validate the viability of one or more aspects of an ISCP." Incorrect answers: a) ISCP Testing takes many forms, but is not necessarily scenario-based; c) ISCP Trai...