Which framework serves as the baseline for protecting CDI where applicable?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $9.99Unlock all

Prepare for the DOD Instruction 5200.48 Controlled Unclassified Information (CUI) Exam. Boost your knowledge with our engaging multiple-choice questions, hints, and explanations. Ace the test and enhance your understanding of CUI! Get ready now!

Multiple Choice

Which framework serves as the baseline for protecting CDI where applicable?

Protecting CDI in applicable DoD contexts relies on a concrete set of security controls designed for nonfederal environments. NIST SP 800-171 provides that baseline: it specifies 110 security requirements organized into 14 families (covering areas like access control, incident response, configuration management, and risk assessment) to safeguard controlled unclassified information when it resides outside federal systems. This framework was established for DoD contracting and aligns with relevant DFARS clauses, making it the go-to baseline for protecting CDI where applicable. The other frameworks are broader or targeted to different domains—ISO/IEC 27001 focuses on management systems, COBIT on governance, and PCI-DSS on payment card data—so they don’t serve as the DoD baseline for CDI protection.

Which framework serves as the baseline for protecting CDI where applicable?

Prepare for the DOD Instruction 5200.48 Controlled Unclassified Information (CUI) Exam. Boost your knowledge with our engaging multiple-choice questions, hints, and explanations. Ace the test and enhance your understanding of CUI! Get ready now!

Which framework serves as the baseline for protecting CDI where applicable?

Get the latest from Examzify