(ISC)2(ISC)2
CISSP-ISSEP · Question #4
CISSP-ISSEP Question #4: Real Exam Question with Answer & Explanation
The correct answer is B: Accreditation is the official management decision given by a senior agency official to authorize. See the full explanation below for the reasoning.
Risk Management
Question
Certification and Accreditation (C&A or CnA) is a process for implementing information security. It is a systematic procedure for evaluating, describing, testing, and authorizing systems prior to or after a system is in operation. Which of the following statements are true about Certification and Accreditation? Each correct answer represents a complete solution. Choose two.
Options
- AAccreditation is a comprehensive assessment of the management, operational, and technical
- BAccreditation is the official management decision given by a senior agency official to authorize
- CCertification is a comprehensive assessment of the management, operational, and technical
- DCertification is the official management decision given by a senior agency official to authorize
Topics
#Certification and Accreditation#Accreditation#Certification#Risk Management Framework
Community Discussion
No community discussion yet for this question.