Multiple Choice
Which of the following is a major activity in the information security measures development process,according to NIST?
A) Identification and definition of the current information security program
B) Development and selection of specific measures to gauge the implementation, effectiveness, efficiency and impact of the security controls
C) Both of these
D) Neither of these
Correct Answer:
Verified
Correct Answer:
Verified
Q38: Before beginning the process of designing,collecting,and using
Q70: Organizations pursue accreditation or certification to _.<br>A)
Q71: To generate a security blueprint,organizations usually draw
Q72: In some organizations,the terms metrics and <u>best
Q73: Under the NIST SP 800-37 security controls
Q75: The biggest barrier to benchmarking in information
Q76: Accreditation is the authorization of an IT
Q77: The last phase in the NIST performance
Q78: The two categories of benchmarks that are
Q79: According to NIST SP 800-55: Performance Measurement