(ISC)2(ISC)2
CGRC · Question #216
CGRC Question #216: Real Exam Question with Answer & Explanation
Sign in or unlock CGRC to reveal the answer and full explanation for question #216. The question stem and answer options stay visible for context.
Compliance Maintenance
Question
According to NIST SP 800-37 Rev 2, which role has a primary responsibility to report the security status of the information system to the authorizing official (OA) and other appropriate organizational officials on an ongoing basis in accordance with the monitoring strategy? Response:
Options
- AInformation system security officer
- BIndependent assessor
- CCommon control provider
- DSenior information assurance officer
Unlock CGRC to see the answer
You've previewed enough free CGRC questions. Unlock CGRC for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#NIST RMF Roles#Common Control Provider (CCP)#Ongoing Monitoring#Authorizing Official (AO)