최신 CMMC-CCP 무료덤프 - Cyber AB Certified CMMC Professional (CCP)

문제1

In performing scoping, what should the assessor ensure that the scope of the assessment covers?

A. All entities, regardless of the line of business, associated with the organization

B. All assets regardless if they do or do not process, store, or transmit FCI/CUI

C. All assets documented in the business plan

D. All assets processing, storing, or transmitting FCI/CUI and security protection assets

정답: D

문제2

Regarding the Risk Assessment (RA) domain, what should an OSC periodically assess?

A. Organizational operations, business assets, and employees

B. Organizational operations, organizational processes, and individuals

C. Organizational operations, organizational assets, and individuals

D. Organizational operations, business processes, and employees

정답: C

문제3

In the CMMC Model, how many practices are included in Level 2?

A. 180 practices

B. 17 practices

C. 72 practices

D. 110 practices

정답: C

문제4

Which regulation allows for whistleblowers to sue on behalf of the federal government?

A. Code of Professional Conduct

B. NISTSP 800-171

C. NISTSP 800-53

D. False Claims Act

정답: D

문제5

An assessor is collecting affirmations. So far, the assessor has collected interviews, demonstrations, emails, messaging, and presentations. Are these appropriate approaches to collecting affirmations?

A. Yes,the affirmations collected by the assessor are all appropriate, as are screenshots.

B. No, messaging is not an appropriate affirmation.

C. No,emails are not appropriate affirmations.

D. Yes,the affirmations collected by the assessor are all appropriate.

정답: D

문제6

The director of sales, in a meeting, stated that the sales team received feedback on some emails that were sent, stating that the emails were not marked correctly. Which training should the director of sales refer the sales team to regarding information as to how to mark emails?

A. C3PAO CUI Introduction to Marking

B. NARA CUI Introduction to Marking

C. FBI CUI Introduction to Marking

D. CMMC-AB CUI Introduction to Marking

정답: B

문제7

The Audit and Accountability (AU) domain has practices in:

A. Levels 1 and 3.

B. Levels 1 and 2.

C. Level 2.

D. Level 1.

정답: B

문제8

The CMMC Level 2 assessment methods include examination and can include:

A. specific hardware, software, or firmware safeguards employed within a system.

B. documents, mechanisms, or activities.

C. policies, procedures, security plans, penetration tests, and security requirements.

D. observation of system backup operations, exercising a contingency plan, and monitoring network traffic.

정답: C

문제9

Which standard of assessment do all C3PAO organizations execute an assessment methodology based on?

A. NISTSP800-53A

B. CMMC Assessment Process

C. ISO 27001

D. Government Accountability Office Yellow Book

정답: B

문제10

The Assessment Team has completed Phase 2 of the Assessment Process. In conducting Phase 3 of the Assessment Process, the Assessment Team is reviewing evidence to address Limited Practice Deficiency Corrections. How should the team score practices in which the evidence shows the deficiencies have been corrected?

A. NOT MET

B. NOT APPLICABLE

C. MET

D. POA&M

정답: C

최신 CMMC-CCP 무료덤프 - Cyber AB Certified CMMC Professional (CCP)

우리와 연락하기

유용한 링크

최신 업데이트