CompTIA CASP+ (CAS-003) — Question 1
A company has entered into a business agreement with a business partner for managed human resources services. The Chief Information Security Officer (CISO) has been asked to provide documentation that is required to set up a business-to-business VPN between the two organizations. Which of the following is required in this scenario?
Answer options
- A. ISA
- B. BIA
- C. SLA
- D. RA
Correct answer: A
Explanation
The correct answer is A, ISA (Interconnection Security Agreement), which outlines the security requirements and controls for the VPN connection between the two organizations. The other options, BIA (Business Impact Analysis), SLA (Service Level Agreement), and RA (Risk Assessment), do not specifically address the requirements for establishing a secure connection like the ISA does.