CompTIA Security+ (SY0-601) — Question 382

Which of the following provides a catalog of security and privacy controls related to the United States federal information systems?

Answer options

• A. GDPR
• B. PCI DSS
• C. ISO 27000
• D. NIST 800-53

Correct answer: D

Explanation

NIST 800-53 is the correct answer as it specifically outlines security and privacy controls for federal information systems in the U.S. The other options, such as GDPR, PCI DSS, and ISO 27000, pertain to different regulatory frameworks or standards that do not focus on U.S. federal information systems.