Certified Secure Software Lifecycle Professional (CSSLP) — Question 25
NIST SP 800-53A defines three types of interview depending on the level of assessment conducted. Which of the following NIST SP 800-53A interviews consists of informal and ad hoc interviews?
Answer options
- A. Comprehensive
- B. Significant
- C. Abbreviated
- D. Substantial
Correct answer: D
Explanation
The correct answer is D, Substantial, as it refers to informal and ad hoc interviews. The other options—Comprehensive, Significant, and Abbreviated—represent different levels of structured assessment that do not align with the informal nature described in the question.