ISC2 Exam ISSEP Topic 4 Question 5 Discussion

Actual exam question for ISC2's Information Systems Security Engineering Professional exam

Question #: 5
Topic #: 4

[All Information Systems Security Engineering Professional Questions]

The Phase 4 of DITSCAP C&A is known as Post Accreditation. This phase starts after the system has been accredited in Phase 3. What are the process activities of this phase?

Each correct answer represents a complete solution. Choose all that apply.

ASecurity operations

BContinue to review and refine the SSAA

CChange management

DCompliance validation

ESystem operations

FMaintenance of the SSAA

Show Suggested Answer

Suggested Answer: A, C, D, E, F

The Phase 4 of DITSCAP C&A is known as Post Accreditation. This phase starts after the system has

been accredited in the Phase 3. The goal of this phase is to continue to operate and manage the

system and to ensure that it will maintain an acceptable level of residual risk. The

process activities of this phase are as follows:

System operations

Security operations

Maintenance of the SSAA

Change management

Compliance validation

Answer option B is incorrect. It is a Phase 3 activity.

by Gertude at May 08, 2022, 08:37 PM

Limited Time Offer

25%

Off

Get Premium ISSEP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!