Which of the SP 800-65 CPIC steps involves establishing baseline prioritization?

Enhance your preparation for the Federal IT Security Professional Test. Use quizzes, flashcards, and detailed explanations to ensure success. Stay ahead in the field of IT Security!

Multiple Choice

Which of the SP 800-65 CPIC steps involves establishing baseline prioritization?

Explanation:
In CPIC, you need a solid starting point before deciding what to invest in. Establishing a baseline provides that reference point—the current state of assets, costs, risks, and security controls. Once you know where you stand, you can prioritize investments that will reduce the highest risks or deliver the greatest return relative to that baseline. Identifying the baseline is the step that creates this baseline against which all future investments and prioritizations are measured. The other options focus on budgeting, risk assessment, or incident response, which are important activities but don’t establish the baseline used to prioritize investments.

In CPIC, you need a solid starting point before deciding what to invest in. Establishing a baseline provides that reference point—the current state of assets, costs, risks, and security controls. Once you know where you stand, you can prioritize investments that will reduce the highest risks or deliver the greatest return relative to that baseline. Identifying the baseline is the step that creates this baseline against which all future investments and prioritizations are measured. The other options focus on budgeting, risk assessment, or incident response, which are important activities but don’t establish the baseline used to prioritize investments.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy