Cle 074 - Study guides, Class notes & Summaries

According to a 2013 Pricewaterhouse/ CSO Magazine/Us Secret Service/Carnegie Mellon survey, about what percentage of electronic crime events are caused by insiders - ️️--> 20-25% 5-10% Greater than 80% About 60% Less than 5% The DoD instruction that definitively defines cybersecurity is - ️️-->DoDI 8500.01, signed in March of 2014 Interium DoDI 5000.2 NIST Special Publication 800-145 Federal Information Systems Management Act (FISMA) USC Title 40. Clinger Cohen Act The...

DoD's official site for enterprise RMF policy and implementation guidelines is: (Identify the Systems-Level Continuous Monitoring Strategy) - ️️The Risk Management Framework (RMF) Knowledge Service (KS) Suggested best practices to reduce security risks in the supply chain include: (Select all that apply) (Identify the importance of software assurance and supply chain risk management as part of cybersecurity bests practices) - ️️Select trusted suppliers Assess product security over...

CLE 074 Exam Study Guide with Complete Solutions The key governance in Tier 3 of the risk management hierarchy is the Authorizing Official; in Tier 2, the Principal Authorizing Official; in Tier 1, the DoD Chief Information Officer - Answer---> True False The Security Plan is initiated at Step One of the RMF process and used in all subsequent steps EXCEPT: - Answer--->Step Four, Assess Security Controls Step Two, Select Security Controls Step Six, Monitor Security Controls, Step ...

The key governance in Tier 3 of the risk management hierarchy is the Authorizing Official; in Tier 2, the Principal Authorizing Official; in Tier 1, the DoD Chief Information Officer → --> True False The Security Plan is initiated at Step One of the RMF process and used in all subsequent steps EXCEPT: → -->Step Four, Assess Security Controls Step Two, Select Security Controls Step Six, Monitor Security Controls, Step Five, Authorize Security Controls Step Three, Implement S...

According to "The Common Sense Guide to Mitigating Insider Threats," which item is NOT a best practice to protect against the insider threat? (Identify countermeasures used to combat cyber threats) Make sure that only one person has access to critical passwords and certain classified information. Among the more complex technical areas comprising the Joint Information Environment implementation strategy is Data Center Consolidation. What is the purpose of such consolidation? (Identify t...

CLE 074 Exam Study Guide with Complete Solutions According to "The Common Sense Guide to Mitigating Insider Threats," which item is NOT a best practice to protect against the insider threat? (Identify countermeasures used to combat cyber threats) - Answer-Make sure that only one person has access to critical passwords and certain classified information. Among the more complex technical areas comprising the Joint Information Environment implementation strategy is Data Center Consolid...