nerdexam
(ISC)2

CISSP-ISSMP · Question #56

James works as a security manager for SoftTech Inc. He has been working on the continuous process improvement and on the ordinal scale for measuring the maturity of the organization involved in the so

The correct answer is D. Optimizing level. The Capability Maturity Model (CMM) has five levels: (1) Initial - chaotic, ad hoc; (2) Repeatable - basic project management; (3) Defined - standardized processes; (4) Managed - quantitatively measured; (5) Optimizing - focused on continuous process improvement through increment

Security Leadership and Management

Question

James works as a security manager for SoftTech Inc. He has been working on the continuous process improvement and on the ordinal scale for measuring the maturity of the organization involved in the software processes. According to James, which of the following maturity levels of software CMM focuses on the continuous process improvement?

Options

  • ARepeatable level
  • BDefined level
  • CInitiating level
  • DOptimizing level

How the community answered

(28 responses)
  • B
    7% (2)
  • C
    4% (1)
  • D
    89% (25)

Explanation

The Capability Maturity Model (CMM) has five levels: (1) Initial - chaotic, ad hoc; (2) Repeatable - basic project management; (3) Defined - standardized processes; (4) Managed - quantitatively measured; (5) Optimizing - focused on continuous process improvement through incremental and innovative improvements. The Optimizing level (Level 5) is explicitly defined as the stage where an organization uses quantitative feedback to continuously improve its processes and prevent defects. The question describes this perfectly.

Topics

#CMM#Process Improvement#Organizational Maturity#Software Process Maturity

Community Discussion

No community discussion yet for this question.

Full CISSP-ISSMP Practice