ISC2 CAP Exam - Topic 9 Question 87 Discussion

Actual exam question for ISC2's CAP exam

Question #: 87
Topic #: 9

[All CAP Questions]

Which of the following documents is used to provide a standard approach to the assessment of NIST SP 800-53 security controls?

ANIST SP 800-53A

BNIST SP 800-66

CNIST SP 800-41

DNIST SP 800-37

Show Suggested Answer

Suggested Answer: A

by Raul at Jun 01, 2024, 02:43 PM

Limited Time Offer

25%

Off

Get Premium CAP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Leigha

3 months ago

Are you sure? I thought there were more options.

upvoted 0 times

...

Anna

3 months ago

Yeah, 800-53A is the right one!

upvoted 0 times

...

Antonio

3 months ago

800-66 is for health IT, not this.

upvoted 0 times

...

Dacia

4 months ago

I thought it was 800-37?

upvoted 0 times

...

Jerrod

4 months ago

It's definitely NIST SP 800-53A!

upvoted 0 times

...

Kenneth

4 months ago

I might be mixing things up, but I thought NIST SP 800-53A was definitely the assessment guide.

upvoted 0 times

...

Christiane

4 months ago

I feel like NIST SP 800-37 is related to risk management, not specifically for assessing controls.

upvoted 0 times

...

Carlota

4 months ago

I remember studying NIST SP 800-66 for compliance, but I don’t think it’s the right answer here.

upvoted 0 times

...

Mireya

5 months ago

I think NIST SP 800-53A is the one that focuses on assessment, but I’m not completely sure.

upvoted 0 times

...

German

5 months ago

I think the key is to focus on the specific wording of the question and match it to the NIST SP 800 series document descriptions.

upvoted 0 times

...

Victor

5 months ago

I remember learning about this in class, but I'm drawing a blank right now. I'll have to guess and hope for the best.

upvoted 0 times

...

Norah

5 months ago

Okay, let me review the NIST SP 800 series documents to see which one covers the assessment of security controls.

upvoted 0 times

...

Marti

5 months ago

Hmm, I'm not sure about this one. I'll have to think it through carefully.

upvoted 0 times

...

Annelle

5 months ago

This question seems straightforward, I'm pretty confident I know the answer.

upvoted 0 times

...

Dorsey

5 months ago

I'm a little confused by the wording here. Is moving the demand time fence the best way to address an overstated schedule? I'll have to review my notes to be sure.

upvoted 0 times

...

Cecil

5 months ago

This question seems straightforward, but I want to make sure I understand the differences between routed and transparent firewall modes before answering.

upvoted 0 times

...

Cora

5 months ago

I'm pretty sure the input used to prepare for elicitation is business analysis information, since that would provide the necessary context and requirements to guide the elicitation process.

upvoted 0 times

...

Dick

2 years ago

Hey, where's the 'None of the Above' option? I'm feeling a bit sassy today, you know?

upvoted 0 times

...

Sabrina

2 years ago

Ah, NIST SP 800-37 - the good ol' Risk Management Framework. Definitely not the right answer for this question though.

upvoted 0 times

Mitsue

2 years ago

C) NIST SP 800-41 is not the right choice for this assessment.

upvoted 0 times

...

Carolann

2 years ago

A) NIST SP 800-53A is the correct document for assessing security controls.

upvoted 0 times

...

Rebecka

2 years ago

Wait, isn't NIST SP 800-41 the one we use for firewall guidelines? I think I'm getting my NIST publications mixed up here.

upvoted 0 times

Rebecka

2 years ago

Yeah, NIST SP 800-41 is actually for information security risk management.

upvoted 0 times

...

Marjory

2 years ago

I think NIST SP 800-53A is the one for assessing security controls.

upvoted 0 times

...

Ivette

2 years ago

D) NIST SP 800-37

upvoted 0 times

...

Tegan

2 years ago

C) NIST SP 800-41

upvoted 0 times

...

Jospeh

2 years ago

B) NIST SP 800-66

upvoted 0 times

...

Gilbert

2 years ago

A) NIST SP 800-53A

upvoted 0 times

...

Kate

2 years ago

Hmm, I'm pretty sure it's NIST SP 800-66. That's the one that really dives into the details, right?

upvoted 0 times

Salley

2 years ago

Great choice! NIST SP 800-53A is indeed the document used for assessing NIST SP 800-53 security controls.

upvoted 0 times

...

Dalene

2 years ago

Oh, I see. Thanks for clarifying. I'll go with that then.

upvoted 0 times

...

Filiberto

2 years ago

I think it's actually NIST SP 800-53A. It provides the standard approach for assessment.

upvoted 0 times

...

Catherin

2 years ago

Great choice! NIST SP 800-53A is indeed the document used for assessing NIST SP 800-53 security controls.

upvoted 0 times

...

Alline

2 years ago

D) NIST SP 800-37

upvoted 0 times

...

Alba

2 years ago

C) NIST SP 800-41

upvoted 0 times

...

Catina

2 years ago

B) NIST SP 800-66

upvoted 0 times

...

Louisa

2 years ago

Oh, I see. Thanks for clarifying. I'll go with that then.

upvoted 0 times

...

Tayna

2 years ago

I think it's actually NIST SP 800-53A. That's the one specifically for security controls.

upvoted 0 times

...

Sarah

2 years ago

A) NIST SP 800-53A

upvoted 0 times

...

Nicolette

2 years ago

D) NIST SP 800-37

upvoted 0 times

...

Wenona

2 years ago

C) NIST SP 800-41

upvoted 0 times

...

Theron

2 years ago

B) NIST SP 800-66

upvoted 0 times

...

Meghann

2 years ago

A) NIST SP 800-53A

upvoted 0 times

...

Erinn

2 years ago

I agree with Dean, because NIST SP 800-53A provides the standard approach for assessing security controls.

upvoted 0 times

...

Tarra

2 years ago

NIST SP 800-53A, of course! It's the go-to standard for assessing those security controls.

upvoted 0 times

Marci

2 years ago

Yes, NIST SP 800-53A provides a standard approach for assessing NIST SP 800-53 security controls.

upvoted 0 times

...

Marvel

2 years ago

I agree, NIST SP 800-53A is definitely the document to use for assessing security controls.

upvoted 0 times

...

Fernanda

2 years ago

B) NIST SP 800-66

upvoted 0 times

...

Wayne

2 years ago

I agree, it's the standard approach for assessing NIST SP 800-53 security controls.

upvoted 0 times

...

Angelo

2 years ago

NIST SP 800-53A is definitely the way to go.

upvoted 0 times

...

Matthew

2 years ago

A) NIST SP 800-53A

upvoted 0 times

...

Justine

2 years ago

Definitely, NIST SP 800-53A is the way to go.

upvoted 0 times

...

Dean

2 years ago

I think the answer is A) NIST SP 800-53A.

upvoted 0 times

...