Join the discussion
Question 1/79
During a CMMC readiness review, the OSC proposes that an associated enclave should not be applicable in the scope. Who is responsible for verifying this request?
Correct Answer: D
Add Comments
- Other Question (79q)
- Q1. During a CMMC readiness review, the OSC proposes that an associated enclave should not be ...
- Q2. Which domain references the requirements needed to handle physical or digital assets conta...
- Q3. What are CUI protection responsibilities?
- Q4. Which statement BEST describes the requirements for a C3PA0?...
- Q5. Where does the requirement to include a required practice of ensuring that personnel are t...
- Q6. A C3PAO is conducting High Level Scoping for an OSC that requested an assessment Which ter...
- Q7. During a Level 2 Assessment, an OSC provides documentation that attests that they utilize ...
- Q8. When are data and documents with legacy markings from or for the DoD required to be re-mar...
- Q9. Prior to conducting a CMMC Assessment, the contractor must specify the CMMC Assessment sco...
- Q10. Which resource contains authoritative data classifications of CUI?...
- Q11. An assessment procedure consists of an assessment objective, potential assessment methods,...
- Q12. An assessor needs to get the most accurate answers from an OSC's team members. What is the...
- Q13. Which regulation allows for whistleblowers to sue on behalf of the federal government?...
- Q14. An OSC lead has provided company information, identified that they are seeking CMMC Level ...
- Q15. When are contractors required to achieve a CMMC certificate at the Level specified in the ...
- Q16. Ethics is a shared responsibility between:
- Q17. Which phase of the CMMC Assessment Process includes the task to identify, obtain inventory...
- Q18. An Assessment Team is conducting interviews with team members about their roles and respon...
- Q19. Which NIST SP defines the Assessment Procedure leveraged by the CMMC?...
- Q20. The director of sales, in a meeting, stated that the sales team received feedback on some ...
- Q21. What is the MOST common purpose of assessment procedures?...
- Q22. A Lead Assessor is performing a CMMC readiness review. The Lead Assessor has already recor...
- Q23. The Lead Assessor is presenting the Final Findings Presentation to the OSC. During the pre...
- Q24. When scoping the organizational system, the scope of applicability for the cybersecurity C...
- Q25. Where can a listing of all federal agencies' CUI indices and categories be found?...
- Q26. Which domains are a part of a Level 1 Self-Assessment?...
- Q27. What type of information is NOT intended for public release and is provided by or generate...
- Q28. In the CMMC Model, how many practices are included in Level 1?...
- Q29. What is a PRIMARY activity that is performed while conducting an assessment?...
- Q30. Which document is the BEST source for determining the sources of evidence for a given prac...
- Q31. A Level 2 Assessment of an OSC is winding down and the final results are being prepared to...
- Q32. A CMMC Assessment is being conducted at an OSC's HQ. which is a shared workspace in a mult...
- Q33. Contractor scoping requirements for a CMMC Level 2 Assessment to document the asset in an ...
- Q34. The practices in CMMC Level 2 consists of the security requirements specified in:...
- Q35. While conducting a CMMC Assessment, an individual from the OSC provides documentation to t...
- Q36. On a Level 2 Assessment Team, what are the roles of the CCP and the CCA?...
- Q37. An organization's sales representative is tasked with entering FCI data into various field...
- Q38. A C3PAO has completed a Limited Practice Deficiency Correction Evaluation following an ass...
- Q39. A C3PAO is near completion of a Level 2 Assessment for an OSC. The CMMC Findings Brief and...
- Q40. The Advanced Level in CMMC will contain Access Control {AC) practices from:...
- Q41. A contractor has implemented IA.L2-3.5.3: Multifactor Authentication practice for their pr...
- Q42. As part of CMMC 2.0, the change to Level 1 Self-Assessments supports "reduced assessment c...
- Q43. In late September. CA.L2-3.12.1: Periodically assess the security controls in organization...
- Q44. Which entity specifies the required CMMC Level in Requests for Information and Requests fo...
- Q45. During assessment planning, the OSC recommends a person to interview for a certain practic...
- Q46. During the assessment process, who is the final interpretation authority for recommended f...
- Q47. Who will verify the adequacy and sufficiency of evidence to determine whether the practice...
- Q48. An OSC has requested a C3PAO to conduct a Level 2 Assessment. The C3PAO has agreed, and th...
- Q49. When scoping a Level 2 assessment, which document is useful for understanding the process ...
- Q50. How many domains does the CMMC Model consist of?...
- Q51. A CMMC Assessment Team arrives at an OSC to begin a CMMC Level 2 Assessment. The team chec...
- Q52. In the CMMC Model, how many practices are included in Level 2?...
- Q53. When executing a remediation review, the Lead Assessor should:...
- Q54. An assessor is collecting affirmations. So far, the assessor has collected interviews, dem...
- Q55. Recording evidence as adequate is defined as the criteria needed to:...
- Q56. Before submitting the assessment package to the Lead Assessor for final review, a CCP deci...
- Q57. While developing an assessment plan for an OSC. it is discovered that the certified assess...
- Q58. A dedicated local printer is used to print out documents with FCI in an organization. This...
- Q59. Which example represents a Specialized Asset?
- Q60. During Phase 4 of the Assessment process, what MUST the Lead Assessor determine and recomm...
- Q61. Which MINIMUM Level of certification must a contractor successfully achieve to receive a c...
- Q62. Which statement BEST describes an assessor's evidence gathering activities?...
- Q63. Who is responsible for identifying and verifying Assessment Team Member qualifications?...
- Q64. The Audit and Accountability (AU) domain has practices in:...
- Q65. Which phase of the CMMC Assessment Process includes developing the assessment plan?...
- Q66. Within how many days from the Assessment Final Recommended Findings Brief should the Lead ...
- Q67. A CCP is part of a CMMC Assessment Team interviewing a subject-matter expert on Access Con...
- Q68. The Level 1 practice description in CMMC is Foundational. What is the Level 2 practice des...
- Q69. Per DoDI 5200.48: Controlled Unclassified Information (CUI), CUI is marked by whom?...
- Q70. While conducting a CMMC Assessment, a Lead Assessor is given documentation attesting to Le...
- Q71. Who makes the final determination of the assessment method used for each practice?...
- Q72. A Lead Assessor has been assigned to a CMMC Assessment During the assessment, one of the a...
- Q73. An employee is the primary system administrator for an OSC. The employee will be a core pa...
- Q74. Within the CMMC Ecosystem which organization ultimately will manage and oversee the traini...
- Q75. In preparation for a CMMC Level 1 Self-Assessment, the IT manager for a DIB organization i...
- Q76. An OSC has submitted evidence for an upcoming assessment. The assessor reviews the evidenc...
- Q77. A client uses an external cloud-based service to store, process, or transmit data that is ...
- Q78. Plan of Action defines the clear goal or objective for the plan. What information is gener...
- Q79. When assessing SI.L2-3.14.6: Monitor communications for attack, the CCA interviews the per...
