ExpertMedium1 markMultiple Choice
CPA · Question 12 · Area II: Security
Which of the following NIST Cybersecurity Framework (CSF) functions is PRIMARILY associated with the implementation of safeguards to ensure delivery of critical infrastructure services, such as Access Control and Awareness Training?
Which of the following NIST Cybersecurity Framework (CSF) functions is PRIMARILY associated with the implementation of safeguards to ensure delivery of critical infrastructure services, such as Access Control and Awareness Training?
Answer options:
A.
Identify
B.
Protect
C.
Detect
D.
Respond
How to approach this question
Map the specific activities (Access Control, Training) to the 5 NIST Functions.
Full Answer
B.Protect✓ Correct
B
The 'Protect' function in NIST CSF supports the ability to limit or contain the impact of a potential cybersecurity event. Categories include Identity Management, Authentication and Access Control, Awareness and Training, and Data Security.
Common mistakes
Confusing Protect (prevention) with Identify (inventory/risk assessment).
Practice the full CPA ISC Practice Exam 3
82 questions · hints · full answers · grading
More questions from this exam
Q01A CPA is advising a client who is migrating their legacy on-premise ERP system to a cloud-based s...MediumQ02During a review of a client's cloud governance structure, an auditor notes that the client uses a...MediumQ03An auditor is evaluating the 'Processing Integrity' principle for a financial institution's loan ...HardQ04A company uses a batch processing system to update inventory records overnight. The 'Grandfather-...HardQ05During a walkthrough of the change management process, an auditor observes that the 'Developer' r...Medium