CMMC-CCP 무료 덤프문제 온라인 액세스

While conducting a CMMC Level 2 Assessment, a CCP is reviewing an OSC's personnel security process.
They have a policy that describes screening individuals prior to authorizing access to CUI, but it does not mention what organizations should be looking for in an individual. There is no link to a process or procedural document. What should the OSC evaluate when screening individuals prior to accessing CUI?

• A.They are a hard and loyal worker
• B.They are trusted and well liked
• C.Their functionality, reliability, and ability to adapt
• D.Their conduct, integrity, and loyalty

A CMMC Level 1 Self-Assessment identified an asset in the OSC's facility that does not process, store, or transmit FCI. Which type of asset is this considered?

• A.FCI Assets
• B.Specialized Assets
• C.Out-of-Scope Assets
• D.Government-Issued Assets

Which are guiding principles in the CMMC Code of Professional Conduct?

• A.Proper use of methods, higher accountability, and information integrity
• B.Objectivity, information integrity, and higher accountability
• C.Objectivity, information integrity, and proper use of methods
• D.Proper use of methods, higher accountability, and objectivity

Exercising due care to ensure the information gathered during the assessment is protected even after the engagement has ended meets which code of conduct requirement?

• A.Confidentiality
• B.Availability
• C.Information Integrity
• D.Respect for Intellectual Property

Which statement BEST describes the requirements for a C3PA0?

• A.An accredited C3PAO must meet all DoD and some ISO/IEC 17020 requirements.
• B.AC3PAO must be accredited by DoD before being able to conduct assessments.
• C.A C3PAO must be authorized by CMMC-AB before being able to conduct assessments.
• D.An authorized C3PAO must meet some DoD and all ISO/IEC 17020 requirements.