Which of the following NIST risk management framework steps would an information system security engineer identify inherited security controls and tailor those controls to the system?

During which of the following NIST risk management framework steps would an information system security engineer identify inherited security controls and tailor those controls to the system?
A. Categorize
B. Select
C. Implement
D. Access

CS0-002: CompTIA CySA+ Exam

FULL Printable PDF and Software. VALID exam to help you PASS.

comptia-exams

3 thoughts on “Which of the following NIST risk management framework steps would an information system security engineer identify inherited security controls and tailor those controls to the system?

  1. B. Select

    NIST RMF Step 2: Select
    Purpose:
    • Select security controls
    starting with the appropriate
    baseline using categorization
    output from Step 1
    • Apply tailoring guidance as
    needed based on risk
    assessment

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.