Multiple Choice
According to NIST SP 800-37,which of the following is the first step in the security controls selection process?
A) Categorize the information system and the information processed
B) Select an initial set of baseline security controls
C) Assess the security controls using appropriate assessment procedures
D) Authorize information system operation based on risk determination
Correct Answer:
Verified
Correct Answer:
Verified
Q11: Data or the trends in data that
Q12: Which of the following is NOT a
Q13: Why it measurement prioritization and selection important?How
Q14: A practice related to benchmarking is _,which
Q15: Which of the following is the last
Q17: The data or the trends in data
Q18: Which of the following is NOT one
Q19: InfoSec measurements collected from production statistics depend
Q20: Organizations must consider all but which of
Q21: <U>Standardization</U> is an an attempt to improve