Question 1

Continuous Monitoring is the fourth phase of the security certification and accreditation process.

What activities are performed in the Continuous Monitoring process?

Each correct answer represents a complete solution. Choose all that apply.

Options :

A : Status reporting and documentation

B : Security control monitoring and impact analyses of changes to the information system

C : Configuration management and control

D : Security accreditation documentation

E : Security accreditation decision

Answer: A,B,C

Question 2

Which of the following acts is used to recognize the importance of information security to the economic and national security interests of the United States?

Options :

A : Lanham Act

B : FISMA

C : Computer Fraud and Abuse Act

D : Computer Misuse Act

Answer: B

Question 3

Your project has several risks that may cause serious financial impact should they happen. You have

studied the risk events and made some potential risk responses for the risk events but management

wants you to do more. They'd like for you to create some type of a chart that identified the risk

probability and impact with a financial amount for each risk event. What is the likely outcome of

creating this type of chart?

Options :

A : Risk response plan

B : Quantitative analysis

C : Risk response

D : Contingency reserve

Answer: D

Question 4

Which of the following are the most important tasks of the Information Management Plan (IMP)? Each correct answer represents a complete solution. Choose all that apply.

Options :

A : Define the Information Protection Policy (IPP)

B : Define the System Security Requirements

C : Define the mission need

D : Identify how the organization manages its information.

Answer: A,C,D

Question 5

Which of the following tasks obtains the customer agreement in planning the technical effort?

Options :

A : Task 9

B : Task 11

C : Task 8

D : Task 10

Answer: B

Higher Test Marks with Free Online ISSEP Exam Practice

Buying Options: