ExpertMedium1 markMultiple Choice
CPA · Question 37 · Area II: Security
NIST Special Publication 800-53 is primarily designed for:
NIST Special Publication 800-53 is primarily designed for:
Answer options:
A.
Credit card security requirements.
B.
Security and Privacy Controls for Information Systems and Organizations (Federal)
C.
International privacy laws.
D.
Corporate governance of IT.
How to approach this question
Associate SP 800-53 with Federal/Government controls.
Full Answer
B.Security and Privacy Controls for Information Systems and Organizations (Federal)✓ Correct
Security and Privacy Controls for Information Systems and Organizations (Federal)
NIST SP 800-53 provides a catalog of security and privacy controls for all U.S. federal information systems except those related to national security.
Common mistakes
Confusing it with the NIST Cybersecurity Framework (CSF) which is voluntary for private sector.
Practice the full CPA ISC Practice Exam 5
82 questions · hints · full answers · grading
More questions from this exam
Q01A service organization provides a cloud-based payroll processing application to its user entities...MediumQ02An auditor is reviewing the shared responsibility model for a client using an Infrastructure as a...HardQ03A financial institution requires a cloud deployment model that offers the highest level of contro...MediumQ04During an IT audit, you observe that a company uses a 'Hybrid Cloud' architecture. Which scenario...MediumQ05Which component of IT architecture is primarily responsible for translating domain names (like ww...Easy