nerdexam
(ISC)2

CISSP-ISSEP · Question #173

Which of the following types of CNSS issuances establishes criteria, and assigns responsibilities?

The correct answer is D. Policies. Policies (CNSS issuances) are the documents that establish criteria and assign responsibilities - they set the high-level "what must be done and by whom" framework for national security systems security. Why the distractors are wrong: A. Advisory memoranda are informational and n

Governance and Training

Question

Which of the following types of CNSS issuances establishes criteria, and assigns responsibilities?

Options

  • AAdvisory memoranda
  • BDirectives
  • CInstructions
  • DPolicies

How the community answered

(29 responses)
  • A
    3% (1)
  • C
    3% (1)
  • D
    93% (27)

Explanation

Policies (CNSS issuances) are the documents that establish criteria and assign responsibilities - they set the high-level "what must be done and by whom" framework for national security systems security.

Why the distractors are wrong:

  • A. Advisory memoranda are informational and non-binding - they provide guidance or awareness but do not assign responsibilities.
  • B. Directives mandate specific actions or compliance requirements but focus on directing behavior rather than establishing criteria and assigning roles.
  • C. Instructions provide the operational "how-to" - step-by-step implementation details for carrying out policy requirements.

Memory tip: Think of the hierarchy as P-D-I-A (top to bottom): Policies set the rules and ownership → Directives mandate action → Instructions explain how → Advisory memos just inform. If a question mentions "criteria" + "responsibilities" together, that's policy-level language.

Topics

#CNSS#Security Policies#Information Security Governance

Community Discussion

No community discussion yet for this question.

Full CISSP-ISSEP Practice