NEW QUESTION 1
Which of the following individuals reviews and approves project deliverables from a QA perspective

• A. Information systems security engineer
• B. System owner
• C. Quality assurance manager
• D. Project manager

Answer: C

NEW QUESTION 2
Which of the following federal laws are related to hacking activities Each correct answer represents a complete solution. Choose three.

• A. 18 U.S.
• B. 1030
• C. 18 U.S.
• D. 1029
• E. 18 U.S.
• F. 2510
• G. 18 U.S.
• H. 1028

Answer: ABC

NEW QUESTION 3
Which of the following individuals is responsible for the oversight of a program that is supported by a team of people that consists of, or be exclusively comprised of contractors

• A. Quality Assurance Manager
• B. Senior Analyst
• C. System Owner
• D. Federal program manager

Answer: D

NEW QUESTION 4
Which of the following memorandums directs the Departments and Agencies to post clear privacy policies on World Wide Web sites, and provides guidance for doing it

• A. OMB M-99-18
• B. OMB M-00-13
• C. OMB M-03-19
• D. OMB M-00-07

Answer: A

NEW QUESTION 5
The Phase 2 of DITSCAP C&A is known as Verification. The goal of this phase is to obtain a fully integrated system for certification testing and accreditation. What are the process activities of this phase Each correct answer represents a complete solution. Choose all that apply.

• A. Assessment of the Analysis Results
• B. Certification analysis
• C. Registration
• D. System development
• E. Configuring refinement of the SSAA

Answer: ABDE

NEW QUESTION 6
Stella works as a system engineer for BlueWell Inc. She wants to identify the performance thresholds of each build. Which of the following tests will help Stella to achieve her task

• A. Regression test
• B. Reliability test
• C. Functional test
• D. Performance test

Answer: D

NEW QUESTION 7
Which of the following processes provides a standard set of activities, general tasks, and a management structure to certify and accredit systems, which maintain the information assurance and the security posture of a system or site

• A. ASSET
• B. NSA-IAM
• C. NIACAP
• D. DITSCAP

Answer: C

NEW QUESTION 8
What NIACAP certification levels are recommended by the certifier Each correct answer represents a complete solution. Choose all that apply.

• A. Basic System Review
• B. Basic Security Review
• C. Maximum Analysis
• D. Comprehensive Analysis
• E. Detailed Analysis
• F. Minimum Analysis

Answer: BDEF

NEW QUESTION 9
The National Information Assurance Certification and Accreditation Process (NIACAP) is the minimum standard process for the certification and accreditation of computer and telecommunications systems that handle U.S. national security information. Which of the following participants are required in a NIACAP security assessment Each correct answer represents a part of the solution. Choose all that apply.

• A. Information Assurance Manager
• B. Designated Approving Authority
• C. Certification agent
• D. IS program manager
• E. User representative

Answer: BCDE

NEW QUESTION 10
Which of the following individuals is an upper-level manager who has the power and capability to evaluate the mission, business case, and budgetary needs of the system while also considering the security risks

• A. User Representative
• B. Program Manager
• C. Certifier
• D. DAA

Answer: D

NEW QUESTION 11
Registration Task 5 identifies the system security requirements. Which of the following elements of Registration Task 5 defines the type of data processed by the system

• A. Data security requirement
• B. Network connection rule
• C. Applicable instruction or directive
• D. Security concept of operation

Answer: A

NEW QUESTION 12
Which of the following policies describes the national policy on the secure electronic messaging service

• A. NSTISSP N
• B. 11
• C. NSTISSP N
• D. 7
• E. NSTISSP N
• F. 6
• G. NSTISSP N
• H. 101

Answer: B

NEW QUESTION 13
Which of the following email lists is written for the technical audiences, and provides weekly summaries of security issues, new vulnerabilities, potential impact, patches and workarounds, as well as the actions recommended to mitigate risk

• A. Cyber Security Tip
• B. Cyber Security Alert
• C. Cyber Security Bulletin
• D. Technical Cyber Security Alert

Answer: C

NEW QUESTION 14
Which of the following federal agencies has the objective to develop and promote measurement, standards, and technology to enhance productivity, facilitate trade, and improve the quality of life

• A. National Institute of Standards and Technology (NIST)
• B. National Security Agency (NSA)
• C. Committee on National Security Systems (CNSS)
• D. United States Congress

Answer: A

NEW QUESTION 15
DoD 8500.2 establishes IA controls for information systems according to the Mission Assurance Categories (MAC) and confidentiality levels. Which of the following MAC levels requires high integrity and medium availability

• A. MAC I
• B. MAC II
• C. MAC III
• D. MAC IV

Answer: B

NEW QUESTION 16
In which of the following phases of the interconnection life cycle as defined by NIST SP
800-47 does the participating organizations perform the following tasks Perform preliminary activities. Examine all relevant technical, security and administrative issues. Form an agreement governing the management, operation, and use of the interconnection.

• A. Establishing the interconnection
• B. Disconnecting the interconnection
• C. Planning the interconnection
• D. Maintaining the interconnection

Answer: C

NEW QUESTION 17
Which of the following agencies provides command and control capabilities and enterprise infrastructure to continuously operate and assure a global net-centric enterprise in direct support to joint warfighters, National level leaders, and other mission and coalition partners
across the full spectrum of operations

• A. DARPA
• B. DTIC
• C. DISA
• D. DIAP

Answer: C