Free Preparation Discussions
MENU
Cyber AB CMMC-CCA Exam - Topic 4 Question 1 Discussion
Topic #: 4
SecureNet is a mid-sized company that designs and manufactures access control systems for government buildings. These systems utilize Internet of Things (IoT) devices embedded within the access control panels for real-time remote monitoring. SecureNet is undergoing a CMMC Level 2 assessment to comply with new government contracting requirements. During the scope validation stage, the Certified CMMC Assessor (CCA) will review SecureNet's proposed assessment scope with the IT team. The scope includes all servers, workstations, and laptops within SecureNet's network. However, there is no mention of the IoT devices within the access control panels. Which of the following asset categories is most likely to encompass the in-scope IoT devices used in SecureNet's access control systems?
Comprehensive and Detailed
IoT devices in access control panels are Specialized Assets per the CMMC Assessment Scope - Level 2, as they are non-standard equipment tied to contract performance. They may process or transmit CUI-related data (e.g., security monitoring), making them in scope, but they don't inherently provide security functions (Option A) or fit as CRMAs (Option D). ''Hardware Assets'' (Option C) is not a CMMC category. B is correct, and the IoT devices should be added to the scope.
CMMC Assessment Scope - Level 2, Section 2.3.4 (Specialized Assets), p. 6: 'IoT devices are Specialized Assets.'
Estrella
2 months agoJenifer
2 months agoGaston
2 months agoJacqueline
3 months agoPansy
3 months agoMerrilee
3 months agoMari
3 months agoFrance
4 months agoElke
4 months agoElmira
4 months agoLuisa
4 months agoAshley
4 months agoJohana
4 months agoHerman
5 months ago