CISSP – Information Systems Security Engineering Professional (ISSEP) — Question 1

FITSAF stands for Federal Information Technology Security Assessment Framework. It is a methodology for assessing the security of information systems. Which of the following FITSAF levels shows that the procedures and controls are tested and reviewed

Answer options

• A. Level 4
• B. Level 5
• C. Level 1
• D. Level 2
• E. Level 3

Correct answer: A

Explanation

Level 4 of FITSAF indicates that procedures and controls have undergone testing and review, ensuring their effectiveness. The other levels (1, 2, 3, and 5) either denote initial assessments or do not confirm that the controls have been thoroughly evaluated.