levels shows that the procedures and controls are tested and reviewed?

A. Level 4
B. Level 5
C. Level 1
D. Level 2
E. Level 3

Answer(s): A
QUESTION: 37
The Phase 2 of DITSCAP C&A is known as Verification. The goal of this phase is to obtain a
fully integrated system for certification testing and accreditation. What are the process activities
of this phase?
Each correct answer represents a complete solution. Choose all that apply.

A. Assessment of the Analysis Results
B. Certification analysis
C. Registration
D. System development
E. Configuring refinement of the SSAA

Answer(s): A,B,D,E
QUESTION: 38
Which of the following persons in an organization is responsible for rejecting or accepting the
residual risk for a system?

A. System Owner
B. Information Systems Security Officer (ISSO)
C. Designated Approving Authority (DAA)
D. Chief Information Security Officer (CISO)

Answer(s): C
QUESTION: 39
You work as a security engineer for BlueWel Inc. According to you, which of the following
statements determines the main focus of the ISSE process?

A. Design information systems that will meet the certification and accreditation documentation.
B. Identify the information protection needs.
C. Ensure information systems are designed and developed with functional relevance.
D. Instruct systems engineers on availability, integrity, and confidentiality.

Answer(s): B
QUESTION: 40
You work as a systems engineer for BlueWel Inc. You are working on translating system
requirements into detailed function criteria. Which of the following diagrams will help you to
show all of the function requirements and their groupings in one diagram?

https://Free-Braindumps.com
10

Free ISC CISSP-ISSEP Exam Braindumps (page: 9)

CISSP-ISSEP Exam Discussions & Posts