(ISC)2(ISC)2
CGRC · Question #289
CGRC Question #289: Real Exam Question with Answer & Explanation
Sign in or unlock CGRC to reveal the answer and full explanation for question #289. The question stem and answer options stay visible for context.
Security and Privacy Governance, Risk Management, and Compliance Program
Question
What essential documentation should be included in the system authorization package? Response:
Options
- ASystem security plan
- BRisk assessment (which includes a minimum security baseline assessment, and which may be an
- CCertification test plan and results report (might also be referred to as a security assessment report)
- DRemediation plan (or plan of action and milestones)
- ECertification statement
- FRequirement analysis
- GExecution plan
- HSystem impact analysis
Unlock CGRC to see the answer
You've previewed enough free CGRC questions. Unlock CGRC for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#System Authorization Package#RMF Authorization#Authorization Documentation#System Security Plan