최신 CMMC-CCP 무료덤프 - Cyber AB Certified CMMC Professional (CCP)

문제1

A CCP is providing consulting services to a company who is an OSC. The CCP is preparing the OSC for a CMMC Level 2 assessment. The company has asked the CCP who is responsible for determining the CMMC Assessment Scope and who validates its CMMC Assessment Scope. How should the CCP respond?

A. "The CMMC C3PAO determines the CMMC Assessment Scope, and the Lead Assessor validates the CMMC Assessment Scope."

B. "The OSC determines the CMMC Assessment Scope, and the C3PAO validates the CMMC Assessment Scope."

C. "The CMMC Lead Assessor determines the CMMC Assessment Scope, and the OSC validates the CMMC Assessment Scope."

D. "The OSC determines the CMMC Assessment Scope, and the CCP validates the CMMC Assessment Scope."

정답: B

문제2

Which standard and regulation requirements are the CMMC Model 2.0 based on?

A. DFARS, FIPS 100, NIST SP 800-171,and Carnegie Mellon University

B. NIST SP 800-171 and NIST SP 800-172

C. DFARS, FIPS 100,and NIST SP 800-171

D. DFARS, NIST, and Carnegie Mellon University

정답: B

문제3

What is the MOST common purpose of assessment procedures?

A. Determine information flow.

B. Determine value of hardware and software.

C. Define level of effort.

D. Obtain evidence.

정답: D

문제4

Where can a listing of all federal agencies' CUI indices and categories be found?

A. Official CMMC Registry

B. Official CUI Registry

C. 32 CFR Section 2002

D. Executive Order 13556

정답: B

문제5

On a Level 2 Assessment Team, what are the roles of the CCP and the CCA?

A. The CCP leads the Level 2 Assessment Team, which can include a CCA. regardless of citizenship.

B. The CCP leads the Level 2 Assessment Team, which consists of one or more CCAs.

C. The CCA leads the Level 2 Assessment Team, which can include 3 CCP with US Citizenship.

D. The CCA leads the Level 2 Assessment Team, which can include a CCP regardless of citizenship.

정답: C

문제6

A Level 2 Assessment was conducted for an OSC, and the results are ready to be submitted. Prior to uploading the assessment results, what step MUST the C3PAO complete?

A. Pay an assessment submission fee.

B. Coordinate a final briefing between the Lead Assessor and the OSC.

C. Notify the CMMC-AB that submission is forthcoming.

D. Complete an internal review of the results.

정답: D

문제7

Which standard of assessment do all C3PAO organizations execute an assessment methodology based on?

A. NISTSP800-53A

B. CMMC Assessment Process

C. ISO 27001

D. Government Accountability Office Yellow Book

정답: B

문제8

The director of sales, in a meeting, stated that the sales team received feedback on some emails that were sent, stating that the emails were not marked correctly. Which training should the director of sales refer the sales team to regarding information as to how to mark emails?

A. C3PAO CUI Introduction to Marking

B. NARA CUI Introduction to Marking

C. FBI CUI Introduction to Marking

D. CMMC-AB CUI Introduction to Marking

정답: B

문제9

Which domain has a practice requiring an organization to restrict, disable, or prevent the use of nonessential programs?

A. Access Control (AC)

B. Media Protection (MP)

C. Asset Management (AM)

D. Configuration Management (CM)

정답: D

문제10

An OSC receives an email with "CUI//SP-PRVCY//FED Only" in the body of the message Which organization's website should the OSC go to identify what this marking means?

A. CMMC-AB

B. DoD Contractors FAQ page

C. DoD 239.7601 Definitions page

D. NARA

정답: D

최신 CMMC-CCP 무료덤프 - Cyber AB Certified CMMC Professional (CCP)

우리와 연락하기

유용한 링크

최신 업데이트