CSSLP · Question #20
CSSLP Question #20: Real Exam Question with Answer & Explanation
The correct answer is A: VI Vulnerability and Incident Management. DoD Instruction 8500.2 defines eight Information Assurance (IA) areas, including Vulnerability and Incident Management (VI), Security Design & Configuration (DC), and Enclave and Computing Environment (EC).
Question
According to U.S. Department of Defense (DoD) Instruction 8500.2, there are eight Information Assurance (IA) areas, and the controls are referred to as IA controls. Which of the following are among the eight areas of IA defined by DoD? Each correct answer represents a complete solution. Choose all that apply.
Options
- AVI Vulnerability and Incident Management
- BInformation systems acquisition, development, and maintenance
- CDC Security Design & Configuration
- DEC Enclave and Computing Environment
Explanation
DoD Instruction 8500.2 defines eight Information Assurance (IA) areas, including Vulnerability and Incident Management (VI), Security Design & Configuration (DC), and Enclave and Computing Environment (EC).
Common mistakes.
- B. Information systems acquisition, development, and maintenance is a broader lifecycle activity, not one of the specific eight IA areas as classified by the DoD 8500.2 instruction. While related to security, it does not represent one of the distinct categorized areas of IA controls.
Concept tested. DoD Information Assurance (IA) areas
Topics
Community Discussion
No community discussion yet for this question.