Which of the following processes provides a standard set of activities, general tasks, and a management structure to certify and accredit systems, which maintain the information assurance and the security posture of a system or site?
Suggested Answer:maintain the information assurance and the security posture of a system or site. Answer: D is incorrect. DITSCAP is a process, which establishes a standard🗳️
NIACAP is a process, which provides a standard set of activities, general tasks, and a management structure to certify and accredit systems that process, a set of activities, general task descriptions, and a management structure to certify and accredit the IT systems that will maintain the required security through the use of the questionnaire in NIST.
The correct answer is B. NIACAP (National Information Assurance Certification and Accreditation Process) provides a standard set of activities, general tasks, and a management structure to certify and accredit systems, which maintain the information assurance and security posture of a system or site. DITSCAP (Department of Defense Information Technology Security Certification and Accreditation Process) was the predecessor to NIACAP for U.S. Department of Defense systems. NSA-IAM (Information Assurance Methodology) is used by the National Security Agency for certifying government IT systems. ASSET (Automated Security Self-Evaluation Tool) is an automated tool used to assess the security posture of computer networks for risk assessment purposes but does not provide standard processes for certification and accreditation like NIACAP does.
NIACAP (National Information Assurance Certification and Accreditation Process) is a U.S. government standard for certifying and accrediting information systems to ensure their security posture meets defined requirements. It provides a structured framework of activities, tasks, roles and responsibilities for the certification and accreditation process.
The NIACAP process includes four phases: initiation & planning; certification; accreditation; and maintenance. During each phase, various stakeholders participate in different stages of the process to evaluate system design, construction, testing and operations against established criteria. These criteria include technical controls such as access control mechanisms or encryption standards alongside non-technical considerations like policies or procedures implementing best practices.
upvoted 1 times
...
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
74gjd_37
5 months, 2 weeks ago74gjd_37
5 months, 2 weeks ago