ISC2 Exam ISSEP Topic 2 Question 32 Discussion

Actual exam question for ISC2's Information Systems Security Engineering Professional exam

Question #: 32
Topic #: 2

Which of the following NIST Special Publication documents provides a guideline on questionnaires

and checklists through which systems can be evaluated for compliance against specific control

objectives?

ANIST SP 800-53A

BNIST SP 800-37

CNIST SP 800-53

DNIST SP 800-26

ENIST SP 800-59

FNIST SP 800-60

Show Suggested Answer

Suggested Answer: D

NIST SP 800-26 (Security Self-Assessment Guide for Information Technology Systems) provides a

guideline on questionnaires and checklists through which systems can be evaluated for compliance

against specific control objectives.

Answer options B, C, A, E, and F are incorrect. NIST has developed a suite of documents for

conducting Certification & Accreditation (C&A).

These documents are as follows:

NIST Special Publication 800-37: This document is a guide for the security certification and

accreditation of Federal Information Systems.

NIST Special Publication 800-53: This document provides a guideline for security controls for Federal

Information Systems.

NIST Special Publication 800-53A. This document consists of techniques and procedures for verifying

the effectiveness of security controls in Federal Information System.

NIST Special Publication 800-59: This document is a guideline for identifying an information system

as a National Security System.

NIST Special Publication 800-60: This document is a guide for mapping types of information and

information systems to security objectives and risk levels.

by Krissy at May 06, 2022, 12:50 PM

Limited Time Offer

25%

Off

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!