- All Exams Instant Download
Who is responsible for verifying this request?
During a CMMC readiness review, the OSC proposes that an associated enclave should not be applicable in the scope. Who is responsible for verifying this request?A . CCPB . C3PAOC . Lead AssessorD . Advisory BoardView AnswerAnswer: C
Before submitting the assessment package to the Lead Assessor for final review, a CCP decides to review the Media Protection (MP) Level 1 practice evidence to ensure that all media containing FCI are sanitized or destroyed before disposal or release for reuse.
Before submitting the assessment package to the Lead Assessor for final review, a CCP decides to review the Media Protection (MP) Level 1 practice evidence to ensure that all media containing FCI are sanitized or destroyed before disposal or release for reuse. After a thorough review, the CCP tells the...
Which function BEST describes what the printer does with the FCI?
A dedicated local printer is used to print out documents with FCI in an organization. This is considered an FCI Asset. Which function BEST describes what the printer does with the FCI?A . EncryptB . ManageC . ProcessD . DistributeView AnswerAnswer: C
What is the MINIMUM number of practices that must be scored as MET to initiate this course of action?
A C3PAO has completed a Limited Practice Deficiency Correction Evaluation following an assessment of an OSC. The Lead Assessor has recommended moving deficiencies to a POA&M. but the OSC will remain on an Interim Certification. What is the MINIMUM number of practices that must be scored as MET to initiate...
When assessing an OSC for CMMC: the Lead Assessor should use the information from the Discussion and Further Discussion sections in each practice because it:
When assessing an OSC for CMMC: the Lead Assessor should use the information from the Discussion and Further Discussion sections in each practice because it:A . is normative for an OSC to follow.B . contains examples that an OSC must implement.C . is mandatory and aligns with FAR Clause 52.204-21.D...
What is the ESP employee considered?
In scoping a CMMC Level 1 Self-Assessment, it is determined that an ESP employee has access to FCI. What is the ESP employee considered?A . In scopeB . Out of scopeC . OSC point of contactD . Assessment Team MemberView AnswerAnswer: A
Which type of asset is this considered?
A CMMC Level 1 Self-Assessment identified an asset in the OSC's facility that does not process, store, or transmit FCI. Which type of asset is this considered?A . FCI AssetsB . Specialized AssetsC . Out-of-Scope AssetsD . Government-Issued AssetsView AnswerAnswer: C
Where can a listing of all federal agencies' CUI indices and categories be found?
Where can a listing of all federal agencies' CUI indices and categories be found?A . 32 CFR Section 2002B . Official CUI RegistryC . Executive Order 13556D . Official CMMC RegistryView AnswerAnswer: B
Are these appropriate approaches to collecting affirmations?
An assessor is collecting affirmations. So far, the assessor has collected interviews, demonstrations, emails, messaging, and presentations. Are these appropriate approaches to collecting affirmations?A . No,emails are not appropriate affirmations.B . No, messaging is not an appropriate affirmation.C . Yes,the affirmations collected by the assessor are all appropriate.D . Yes,the...
What are CUI protection responsibilities?
What are CUI protection responsibilities?A . ShieldingB . GoverningC . CorrectingD . SafeguardingView AnswerAnswer: D
