New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 CCSP Exam - Topic 5 Question 13 Discussion

Actual exam question for ISC2's CCSP exam
Question #: 13
Topic #: 5
[All CCSP Questions]

The baseline should cover which of the following?

Show Suggested Answer Hide Answer
Suggested Answer: C

The more systems that be included in the baseline, the more cost-effective and scalable the baseline is. The baseline does not deal with breaches or version control; those are the provinces of the security office and CMB, respectively. Regulatory compliance might (and usually will) go beyond the baseline and involve systems, processes, and personnel that are not subject to the baseline.


by Viola at May 04, 2022, 01:25 PM

Limited Time Offer

25%

Off

Get Premium CCSP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Glenn
4 months ago
Not sure if we can cover *all* systems realistically.
upvoted 0 times
...
Jesse
4 months ago
I agree, all systems should be included in the baseline!
upvoted 0 times
...
Gianna
4 months ago
Surprised that version control is even an option here.
upvoted 0 times
...
Jacinta
4 months ago
I think data breach alerting is crucial too!
upvoted 0 times
...
Trinidad
5 months ago
Definitely needs to cover all regulatory compliance requirements.
upvoted 0 times
...
Nu
5 months ago
Version control seems less critical for a baseline, but I guess it could be relevant in some contexts.
upvoted 0 times
...
Huey
5 months ago
I remember a practice question that mentioned data breach alerting and reporting as part of the baseline, so that might be important too.
upvoted 0 times
...
Tamesha
5 months ago
I think the baseline should definitely include all regulatory compliance requirements, but I'm not entirely sure if that's the only thing it should cover.
upvoted 0 times
...
Jimmie
5 months ago
I feel like the baseline should cover as many systems as possible, but I can't recall if that's the main focus or just a part of it.
upvoted 0 times
...
Phung
5 months ago
I'm a bit unsure on this one. I'll need to review my notes on the Lean Enterprise framework to refresh my memory on the different core competencies.
upvoted 0 times
...
Tiera
5 months ago
Ah, I've seen questions like this before. I'm pretty confident I can identify the correct statements about IPv6 address configuration. Let me go through the options systematically.
upvoted 0 times
...
Floyd
5 months ago
Hmm, not sure about this one. I'll have to eliminate the options I'm less certain about and then make an educated guess on the remaining choices.
upvoted 0 times
...

Save Cancel