Both ISO and NIST have Frameworks for standards.
when searching parts of the question "sets frameworks and controls for optimal security configuration" only NIST came up specifically.
I personally hate these type of questions as I would utilize both to build from.
Agreed, not a huge fan of the question either. The question only mentions security where both ISO and NIST would cover but I would lean towards NIST as its specifically for improving cybersecurity.
I would choose NIST just because the questions is stating "frameworks" not "standards" (ISO is a standard) I know is weird, but CompTIA is equally weird with these vague questions
besides the word framework and not standard to differentiate between NIST and ISO; when it comes to security configuration on systems specifically, NIST is often more directly associated with detailed guidelines and controls. NIST's Special Publication 800-53 (which is mentioned in the official study guide), for example, provides a comprehensive catalog of security controls for federal information systems and organizations.
So, ISO addresses broader aspects of information security, but NIST is often considered more focused on providing detailed security configurations and controls
NIST (National Institute of Standards and Technology) is the organization that sets frameworks and controls for optimal security configuration on systems. NIST is a non-regulatory agency of the United States Department of Commerce and plays a significant role in developing standards and guidelines for various aspects of information security, including cybersecurity best practices and security configuration.
The organization that sets frameworks and controls for optimal security configuration on systems is NIST (National Institute of Standards and Technology). NIST provides guidelines, standards, and best practices for various aspects of cybersecurity, including security configuration management. Their publications, such as the NIST Special Publication 800-53, provide detailed controls and recommendations for securing information systems and protecting sensitive data.
ISO (International Organization for Standardization) develops and publishes international standards for various industries, including cybersecurity, but it does not specifically focus on security configuration management.
National versus international. Some frameworks are used within
a single country (and referred to as national frameworks), while
others are used internationally. As an example, NIST created the
Cybersecurity Framework, which focuses on cybersecurity activities
and risks within the United States. In contrast, the International
Organization for Standardization (ISO) and the International
Electrotechnical Commission (IEC) create and publish international
standards. For example, ISO/IEC 27002 provides a framework for IT
security.
Source: Darill Gibson, ComptiaSecurity+ SY0-501 Study Guide, page: 690
D. NIST (National Institute of Standards and Technology) sets frameworks and controls for optimal security configuration on systems. NIST provides guidelines, standards, and best practices for information security, including the development of security configuration baselines for various technologies, such as operating systems and applications.
D. NIST ( National Institute of Standards and Technology) is the standard used by organizations to establish fundamental controls and processes needed for optimum cybersecurity
Not true, but just memorize it.
The National Institute of Standards and Technology (NIST) is an agency of the United States Department of Commerce whose mission is to promote American innovation and industrial competitiveness. NIST's activities are organized into physical science laboratory programs that include nanoscale science and technology, engineering, information technology, neutron research, material measurement, and physical measurement. From 1901 to 1988, the agency was named the National Bureau of Standards.[4]
This section is not available anymore. Please use the main Exam Page.SY0-601 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Tjank
Highly Voted 2 years, 9 months agorodwave
2 years, 7 months agoLeDarius3762
1 year, 11 months agovarun0
Highly Voted 2 years, 10 months agoTeleco0997
Most Recent 1 year, 7 months agoDogeo
1 year, 8 months agosujon_london
1 year, 11 months agoProtract8593
1 year, 11 months agoTiazzed
1 year, 11 months agoApplebeesWaiter1122
2 years agoJAMBER
2 years, 1 month agogoodmate
2 years, 3 months agoOmi0204
2 years, 3 months agoronniehaang
2 years, 5 months agoDALLASCOWBOYS
2 years, 5 months agoi_m_Jatin
2 years, 5 months ago[Removed]
2 years, 5 months agoshitgod
2 years, 6 months agoKnowledge33
2 years, 8 months agohousecoatjapan
2 years, 3 months ago