nerdexam
ExamsCSSLPQuestions#240
(ISC)2(ISC)2

CSSLP · Question #240

CSSLP Question #240: Real Exam Question with Answer & Explanation

The correct answer is D: Phase 3. DITSCAP Phase 3, called 'Validation,' ensures that the implemented Information System (IS) operates as intended within its specified computing environment and meets its security requirements.

Secure Software Lifecycle Management

Question

Which of the following DITSCAP phases validates that the preceding work has produced an IS that operates in a specified computing environment?

Options

  • APhase 2
  • BPhase 4
  • CPhase 1
  • DPhase 3

Explanation

DITSCAP Phase 3, called 'Validation,' ensures that the implemented Information System (IS) operates as intended within its specified computing environment and meets its security requirements.

Common mistakes.

  • A. Phase 2 of DITSCAP is 'Verification,' which assesses the security requirements and design of the IS, not its operational validation in the environment.
  • B. Phase 4 of DITSCAP is 'Post-Accreditation,' which involves continuous monitoring and managing the security posture of the accredited system over its lifecycle.
  • C. Phase 1 of DITSCAP is 'Definition,' where the system's mission, environment, and security requirements are identified and documented.

Concept tested. DITSCAP phases - Validation

Reference. https://irp.fas.org/doddir/dod/i8510-1m/index.html

Topics

#DITSCAP#Certification and Accreditation#System Security#Validation

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CSSLP PracticeBrowse All CSSLP Questions