(ISC)2(ISC)2
CAP · Question #286
CAP Question #286: Real Exam Question with Answer & Explanation
The correct answer is B: Determining the requirement of reauthorization and reauthorizing information systems when. See the full explanation below for the reasoning.
Security and Privacy Governance, Risk Management, and Compliance Program
Question
An Authorizing Official plays the role of an approver. What are the responsibilities of an Authorizing Official? Each correct answer represents a complete solution. Choose all that apply.
Options
- AEstablishing and implementing the organization's continuous monitoring program
- BDetermining the requirement of reauthorization and reauthorizing information systems when
- CReviewing security status reports and critical security documents
- DAscertaining the security posture of the organization's information system
Topics
#Authorizing Official (AO)#Risk Management Framework (RMF)#Authorization decisions#Continuous Monitoring
Community Discussion
No community discussion yet for this question.