CISSP Practice question #190

When a system has been certified what does that mean?
A: It has met the data owners security requirements.
B: It has met the data stewards security requirements.
C: The data owner has accepted the certification and the residual risk, which is required before the system is put into production.
D: The data steward has accepted the certification and the residual risk, which is required before the system is put into production.

CBK 2: Asset Security
Source: ThorTeaches.com practice tests

Answer


A: Certification is when a system has been certified to meet the security requirements of the data owner. Certification considers the system, the security measures taken to protect the system, and the residual risk represented by the system.

show less

IT security trainer.
Sharing my knowledge, to help you reach your IT certification goals.
CISSP, C|EH, PMP, CCNP, CompTIA Security+, SCP, CCNA-Security, CCNA, et. Al.

You may also like