You work as a security engineer for BlueWell Inc. Which of the following documents will you use
as a guide for the security certification and accreditation of Federal Information Systems?
A.
NIST Special Publication 800-60
B.
NIST Special Publication 800-53
C.
NIST Special Publication 800-37
D.
NIST Special Publication 800-59
Explanation:
NIST has developed a suite of documents for conducting Certification &
Accreditation (C&A). These documents are as follows: NIST Special Publication 800-37: This
document is a guide for the security certification and accreditation of Federal Information Systems.
NIST Special Publication 800-53: This document provides a guideline for security controls for
Federal Information Systems. NIST Special Publication 800-53A. This document consists of
techniques and procedures for verifying the effectiveness of security controls in Federal
Information System. NIST Special Publication 800-59: This document is a guideline for identifying
an information system as a National Security System. NIST Special Publication 800-60: This
document is a guide for mapping types of information and information systems to security
objectives and risk levels.