ISC2 Exam ISSEP Topic 3 Question 78 Discussion

Actual exam question for ISC2's ISSEP exam

Question #: 78
Topic #: 3

Part of your change management plan details what should happen in the change control system for your project. Theresa, a junior project manager, asks what the configuration management activities are for scope changes. You tell her that all of the following are valid configuration management activities except for which one

AConfiguration Item Costing

BConfiguration Identification

CConfiguration Verification and Auditing

DConfiguration Status Accounting

Show Suggested Answer

Suggested Answer: A, B, C

Continuous Monitoring is the fourth phase of the security certification and accreditation process.

The Continuous Monitoring process consists of the following three main activities:

Configuration management and control Security control monitoring and impact analyses of changes

to the information system Status reporting and documentation The objective of these tasks is to

observe and evaluate the information system security controls during the system life cycle. These

tasks determine whether the changes that have occurred will negatively impact the system security.

Answer options E and D are incorrect. Security accreditation decision and security accreditation

documentation are the two tasks of the security accreditation phase.

by James at Dec 27, 2023, 09:37 AM

Limited Time Offer

25%

20 days ago

I think the answer is A) Configuration Item Costing.

upvoted 0 times

...