Certified Authorization Professional (CAP) — Question 19

Which of the following assessment methodologies defines a six-step technical security evaluation?

Answer options

• A. FITSAF
• B. FIPS 102
• C. OCTAVE
• D. DITSCAP

Correct answer: B

Explanation

The correct answer is B, FIPS 102, as it specifically details a six-step process for technical security evaluations. Options A, C, and D refer to different methodologies that do not have the defined six-step structure found in FIPS 102.