CAP · Question #169
Which of the following acts promote a risk-based policy for cost effective security? Each correct answer represents a part of the solution. Choose all that apply.
The correct answer is A. Clinger-Cohen Act D. Paperwork Reduction Act (PRA). The Clinger-Cohen Act (IT Management Reform Act of 1996) requires federal agencies to use a risk-based policy when managing IT investments and security, emphasizing cost-effectiveness. The Paperwork Reduction Act (PRA) directs agencies to implement information security measures p
Question
Which of the following acts promote a risk-based policy for cost effective security? Each correct answer represents a part of the solution. Choose all that apply.
Options
- AClinger-Cohen Act
- BLanham Act
- CComputer Misuse Act
- DPaperwork Reduction Act (PRA)
How the community answered
(28 responses)- A89% (25)
- B4% (1)
- C7% (2)
Explanation
The Clinger-Cohen Act (IT Management Reform Act of 1996) requires federal agencies to use a risk-based policy when managing IT investments and security, emphasizing cost-effectiveness. The Paperwork Reduction Act (PRA) directs agencies to implement information security measures proportional to risk, promoting cost-effective controls under OMB oversight. The Lanham Act (Choice B) governs trademarks and unfair competition - it has no security policy component. The Computer Misuse Act (Choice C) is a UK law criminalizing unauthorized computer access; it defines offenses, not security management policy frameworks.
Topics
Community Discussion
No community discussion yet for this question.