00:00

QUESTION 16

An OSC needs to be assessed on RA.L2-3.11.1: Periodically assess the risk to organizational operations (including mission, functions, image, or reputation), organizational assets, and individuals, resulting from the operation of organizational systems and the associated processing, storage, or transmission of CUI. What is in scope for a Level 2 assessment of RA.L2-3.11.1?

Correct Answer: D

QUESTION 17

Which training is a CCI authorized to deliver through an approved CMMC LTP?

Correct Answer: A

QUESTION 18

When scoping the organizational system, the scope of applicability for the cybersecurity CUI practices applies to the components of:

Correct Answer: D

QUESTION 19

An assessor is in Phase 3 of the CMMC Assessment Process. The assessor has delivered the final findings, submitted the assessment results package, and provided feedback to the C3PAO and CMMC-AB. What must the assessor still do?

Correct Answer: D

QUESTION 20

On a Level 2 Assessment Team, what are the roles of the CCP and the CCA?

Correct Answer: C