ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question
During kickoff of a new federal software project, the security lead must create a document that defines the system's boundary, identifies all applicable security controls, assigns security responsibilities, and outlines the continuous monitoring approach so the Authorizing Official can decide on system operation. Which security document should be developed at this stage?
The security (or system security) plan is produced early in the project to describe the system environment, list selected and inherited security controls, identify responsible roles, and define how the controls will be monitored for effectiveness. This detailed overview supports the Authorizing Official's risk-based decision to authorize the system.
An incident response plan focuses on detecting, containing, and recovering from security events after deployment, not on defining baseline controls up front.
A verification and validation test report documents test execution results and defects discovered; it does not establish controls or monitoring strategies.
A configuration management plan outlines how changes are proposed, reviewed, and implemented but does not provide the comprehensive control catalog or authorization information required at project initiation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are inherited and selected security controls in a System Security Plan?
Open an interactive chat with Bash
How does continuous monitoring support system authorization in the SSP?
Open an interactive chat with Bash
Why is an Authorizing Official's decision important in system operation?
Open an interactive chat with Bash
ISC2 Certified Secure Software Lifecycle Professional (CSSLP)
Secure Software Lifecycle Management
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .