(ISC)2(ISC)2
CGRC · Question #35
CGRC Question #35: Real Exam Question with Answer & Explanation
Sign in or unlock CGRC to reveal the answer and full explanation for question #35. The question stem and answer options stay visible for context.
Security and Privacy Governance, Risk Management, and Compliance Program
Question
The emphasis of the revised NIST SP 800-37 process is on............. Response:
Options
- ABuilding information security controls into government information systems by applying up-to-date
- BMaintaining awareness of the security posture of information systems through the application of
- CProviding senior leaders essential information to facilitate decision making with regard to risk
- DCreating secured environment to provide guidance to individuals involved in security information
- EDeveloping leadership to use, analyze and manage technical security of government information
Unlock CGRC to see the answer
You've previewed enough free CGRC questions. Unlock CGRC for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#NIST SP 800-37#Risk Management Framework (RMF)#Continuous Monitoring#Risk-based Decision Making