Which SP 800-65 step focuses on prioritization requirements?

Enhance your preparation for the Federal IT Security Professional Test. Use quizzes, flashcards, and detailed explanations to ensure success. Stay ahead in the field of IT Security!

Multiple Choice

Which SP 800-65 step focuses on prioritization requirements?

Explanation:
Prioritization of requirements is about deciding which security needs and actions must be addressed first based on risk, mission impact, and available resources. In SP 800-65, this step establishes the order and importance of requirements so that effort and investments go toward the most critical safeguards first, guiding how controls are selected, implemented, and validated within the certification and accreditation process. The other items describe concrete security activities that aren’t about setting priority. Running a quarterly vulnerability scan is an assessment activity to identify weaknesses. Adopting a standard encryption algorithm is about choosing a specific cryptographic control. Establishing continuous monitoring is about ongoing assurance after implementation.

Prioritization of requirements is about deciding which security needs and actions must be addressed first based on risk, mission impact, and available resources. In SP 800-65, this step establishes the order and importance of requirements so that effort and investments go toward the most critical safeguards first, guiding how controls are selected, implemented, and validated within the certification and accreditation process.

The other items describe concrete security activities that aren’t about setting priority. Running a quarterly vulnerability scan is an assessment activity to identify weaknesses. Adopting a standard encryption algorithm is about choosing a specific cryptographic control. Establishing continuous monitoring is about ongoing assurance after implementation.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy