(ISC)2(ISC)2
CSSLP · Question #253
CSSLP Question #253: Real Exam Question with Answer & Explanation
The correct answer is B: NIST SP 800-59. NIST SP 800-59 provides guidelines for identifying information systems that are considered National Security Systems.
Secure Software Concepts
Question
Which of the following NIST documents provides a guideline for identifying an information system as a National Security System?
Options
- ANIST SP 800-37
- BNIST SP 800-59
- CNIST SP 800-53
- DNIST SP 800-60
- ENIST SP 800-53A
Explanation
NIST SP 800-59 provides guidelines for identifying information systems that are considered National Security Systems.
Common mistakes.
- A. NIST SP 800-37 (Risk Management Framework) provides guidance for applying the RMF to federal information systems.
- C. NIST SP 800-53 (Security and Privacy Controls) recommends security and privacy controls for federal information systems and organizations.
- D. NIST SP 800-60 (Guide for Mapping Information Types) assists in categorizing information types based on their impact levels.
- E. NIST SP 800-53A (Assessing Security and Privacy Controls) provides guidance for assessing the effectiveness of security and privacy controls.
Concept tested. NIST Special Publications - National Security Systems
Reference. https://csrc.nist.gov/publications/detail/sp/800-59/rev-1/final
Topics
#NIST SP 800-59#National Security System#Information System Classification#Regulatory Compliance
Community Discussion
No community discussion yet for this question.