| Question.6 DIACAP applies to the acquisition, operation, and sustainment of any DoD system that collects, stores, transmits, or processes unclassified or classified information since December 1997. What phases are identified by DIACAP? Each correct answer represents a complete solution. Choose all that apply. (A) Accreditation (B) Identification (C) System Definition (D) Verification (E) Validation (F) Re-Accreditation |
6. Click here to View Answer
Correct Answer: C, D, E & F
| Question.7 Mark works as a Network Administrator for NetTech Inc. He wants users to access only those resources that are required for them. Which of the following access control models will he use? (A) Mandatory Access Control (B) Role-Based Access Control (C) Discretionary Access Control (D) Policy Access Control |
7. Click here to View Answer
Correct Answer: B
| Question.8 Which of the following refers to an information security document that is used in the United States Department of Defense (DoD) to describe and accredit networks and systems? (A) FITSAF (B) FIPS (C) TCSEC (D) SSAA |
8. Click here to View Answer
Correct Answer: D
| Question.9 James work as an IT systems personnel in SoftTech Inc. He performs the following tasks: Runs regular backups and routine tests of the validity of the backup data. Performs data restoration from the backups whenever required. Maintains the retained records in accordance with the established information classification policy. What is the role played by James in the organization? (A) Manager (B) Owner (C) Custodian (D) User |
9. Click here to View Answer
Correct Answer: C
| Question.10 FITSAF stands for Federal Information Technology Security Assessment Framework. It is a methodology for assessing the security of information systems. Which of the following FITSAF levels shows that the procedures and controls have been implemented? (A) Level 4 (B) Level 1 (C) Level 3 (D) Level 5 (E) Level 2 |
10. Click here to View Answer
Correct Answer: C