CSSLP Question #156: Real Exam Question with Answer & Explanation

The correct answer is C: Abbreviated. According to NIST SP 800-53A, "Abbreviated" interviews are characterized by their informal and ad hoc nature, used when a brief or targeted discussion is sufficient for assessment purposes.

Secure Software Deployment, Operations, Maintenance

Question

NIST SP 800-53A defines three types of interview depending on the level of assessment conducted. Which of the following NIST SP 800-53A interviews consists of informal and ad hoc interviews?

Options

AComprehensive
BSignificant
CAbbreviated
DSubstantial

Explanation

According to NIST SP 800-53A, "Abbreviated" interviews are characterized by their informal and ad hoc nature, used when a brief or targeted discussion is sufficient for assessment purposes.

Common mistakes.

A. "Comprehensive" interviews, as defined by NIST SP 800-53A, are highly structured and detailed, covering all aspects of a security control or an entire system, which is the opposite of informal and ad hoc.
B. "Significant" is not a defined type of interview in NIST SP 800-53A.
D. "Substantial" is not a defined type of interview in NIST SP 800-53A.

Concept tested. NIST SP 800-53A interview types

Reference. https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-53Ar1.pdf

Topics

#NIST SP 800-53A#Security Assessment#Interview Types#Assessment Methods

Community Discussion

No community discussion yet for this question.

Full CSSLP Practice Browse All CSSLP Questions