Tailoring of Security Baseline occurs when

Prepare for the FISMA Interview Test. Get familiar with key topics and enhance your knowledge with flashcards and multiple-choice questions. Study effectively and be ready for your exam!

Multiple Choice

Tailoring of Security Baseline occurs when

Explanation:
Tailoring a security control baseline means adjusting the standard set of controls to fit the actual system environment and risk. This happens during the Select phase, after the Draft Security Control Baseline is provided to the ISSO and the system owner. Together they review the draft and determine which controls are common controls (inherited by the organization), which are hybrid controls, which are system-specific, and which controls are not applicable. They document the rationale and modify the baseline accordingly. This tailoring ensures the security requirements are appropriate for the system and its operations, avoiding unnecessary controls while still preserving protection. It’s done before assessment and authorization, not during retirement, procurement, or after accreditation.

Tailoring a security control baseline means adjusting the standard set of controls to fit the actual system environment and risk. This happens during the Select phase, after the Draft Security Control Baseline is provided to the ISSO and the system owner. Together they review the draft and determine which controls are common controls (inherited by the organization), which are hybrid controls, which are system-specific, and which controls are not applicable. They document the rationale and modify the baseline accordingly. This tailoring ensures the security requirements are appropriate for the system and its operations, avoiding unnecessary controls while still preserving protection. It’s done before assessment and authorization, not during retirement, procurement, or after accreditation.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy