ISC2 Governance, Risk and Compliance (CGRC) Practice Question
While finalizing the System Security Plan (SSP) for a new payroll platform, which element would BEST satisfy the system purpose and functionality requirement for the authorizing official?
The latest vulnerability scan report with findings categorized by criticality.
A table listing all IP subnets and hostnames allocated to the platform.
A rack diagram detailing server locations, power consumption, and cabling within the data center.
A narrative explaining how the application supports payroll processing, interfaces with HR and banking systems, and identifies primary user roles.
The purpose and functionality section of an SSP is expected to connect the information system to the organization's mission or business processes and describe the major capabilities it provides, along with the primary stakeholders who rely on it. A narrative that explains how the payroll application calculates compensation, exchanges data with HR and banking systems, and identifies key user roles (e.g., payroll clerks, HR staff, finance managers) directly meets that expectation. Hardware rack diagrams, IP inventories, and vulnerability scan results are useful in other parts of the SSP (e.g., system architecture, inventory, or risk assessment) but do not by themselves explain why the system exists or the business functions it enables, so they are insufficient for documenting purpose and functionality.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the purpose of a System Security Plan (SSP)?
Open an interactive chat with Bash
Why is a narrative about system functionality essential for the SSP?
Open an interactive chat with Bash
What role does an authorizing official play in finalizing an SSP?
Open an interactive chat with Bash
ISC2 Governance, Risk and Compliance (CGRC)
Scope of the System
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .