New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 ISSMP Exam - Topic 3 Question 10 Discussion

Actual exam question for ISC2's ISSMP exam
Question #: 10
Topic #: 3
[All ISSMP Questions]

Which of the following processes provides a standard set of activities, general tasks, and a management structure to certify and accredit systems, which maintain the information assurance and the security posture of a system or site?

Show Suggested Answer Hide Answer
Suggested Answer: D

Answer option B is incorrect. DITSCAP is a process, which establishes a standard process, a set of activities, general task descriptions, and a management structure to certify and accredit the IT systems that will maintain the required security posture.

Answer option A is incorrect. The NSA-IAM evaluates information systems at a high level and uses a subset of the SSE-CMM process areas to measure the implementation of information security on these systems.

Answer option C is incorrect. ASSET is a tool developed by NIST to automate the process of self-assessment through the use of the questionnaire in NIST.


by Leatha at May 04, 2022, 02:31 PM

Limited Time Offer

25%

Off

Get Premium ISSMP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Natalie
4 months ago
I had no idea there were so many options!
upvoted 0 times
...
Deane
4 months ago
ASSET seems less known, but could be a contender.
upvoted 0 times
...
Vesta
4 months ago
Wait, isn't DITSCAP still relevant?
upvoted 0 times
...
Margart
4 months ago
Totally agree, NIACAP is the way to go!
upvoted 0 times
...
Thea
5 months ago
I think it's definitely NIACAP.
upvoted 0 times
...
Lorrie
5 months ago
I keep mixing up DITSCAP and NIACAP. I think DITSCAP is more about the certification process, but I can't remember the details.
upvoted 0 times
...
Hubert
5 months ago
I remember that NSA-IAM is related to information assurance, but I don't think it covers the same scope as the others. It's tricky!
upvoted 0 times
...
Brock
5 months ago
I think this question is about certification processes, but I'm not entirely sure which one fits best. I remember studying DITSCAP and NIACAP, but I can't recall the specifics.
upvoted 0 times
...
Yuette
5 months ago
I feel like I came across something similar in practice questions. I think NIACAP might be the right answer since it focuses on security posture, but I'm not completely confident.
upvoted 0 times
...
Gennie
5 months ago
I feel pretty confident that the answer is C. Grounding the AI's responses in relevant contextual data is a key prompt engineering technique to improve the quality of the generated output. The other options don't seem to directly address the question.
upvoted 0 times
...
Anglea
5 months ago
I'm a bit confused by the wording of this question. Let me re-read it and see if I can break down the requirements.
upvoted 0 times
...
Lorrine
5 months ago
Hmm, this looks like a tricky one. I think I'll need to carefully read through the question and consider the different options before deciding.
upvoted 0 times
...

Save Cancel