Content Preview

CASP 003 EXAM 2025 QUESTIONS AND ANSWERS Risk Management Process - ....ANSWER ...-1. identification 2. assessment 4. analyzation 5. mitigation NIST SP 800-39 RMF six unique stages - ....ANSWER ...-1. categorize the info systems and data 2. select security controls 3. implement controls 4. assess the effectiveness of the controls 5. authorize the info system 6. monitor the controls (CSIAAM) ISO/IEC 27000 - ....ANSWER ...-The ISO/IEC 27000-series (also known as the 'ISMS Family of Standards' or 'ISO27K' for short) comprises information security standards published jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).[1] The series provides best practice recommendations on information security management—the management of information risks through information security controls—within the context of an overall Information security management system (ISMS), similar in design to management systems for quality assurance (the ISO 9000 series), environmental protection (the ISO 14000 series) and other management systems Gramm-Leach-Bliley Act - ....ANSWER ...-requires financial institutions to ensure the security and confidentiality of customer data (PII) ...©️ 2025, ALL RIGHTS RESERVED 1