SP 800-60 is described as assisting federal agencies to do what?

Prepare for the FISMA Interview Test. Get familiar with key topics and enhance your knowledge with flashcards and multiple-choice questions. Study effectively and be ready for your exam!

Multiple Choice

SP 800-60 is described as assisting federal agencies to do what?

Explanation:
Understanding how to categorize information and information systems for security is what SP 800-60 emphasizes. It provides a method for federal agencies to map data types and system types to security categories (low, moderate, high) based on the potential impact to confidentiality, integrity, and availability. This categorization drives the level of controls required and guides risk management under FISMA. It does not define encryption standards, nor address personnel access management, nor incident response procedures—topics covered by other guidelines.

Understanding how to categorize information and information systems for security is what SP 800-60 emphasizes. It provides a method for federal agencies to map data types and system types to security categories (low, moderate, high) based on the potential impact to confidentiality, integrity, and availability. This categorization drives the level of controls required and guides risk management under FISMA. It does not define encryption standards, nor address personnel access management, nor incident response procedures—topics covered by other guidelines.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy