Which of the following framework describes the essential characteristics of an organization's security engineering process that must exist to ensure good security engineering?
p. 38:
SSE-CMM is a process-oriented framework that designs secure systems based on Software Engineering Capability Maturity Model. It specifies the important properties of the security engineering process that are needed to maintain security engineering effectively. This model is used as a tool to monitor security engineering practices and standard mechanism for analyzing the capability of the provider's security engineering.
The answer is C as per the ISO website:
SO/IEC 21827:2008 specifies the Systems Security Engineering - Capability Maturity Model® (SSE-CMM®), which describes the essential characteristics of an organization's security engineering process that must exist to ensure good security engineering. ISO/IEC 21827:2008 does not prescribe a particular process or sequence, but captures practices generally observed in industry.
https://www.iso.org/standard/44716.html
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.312-39 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Berro_b
1 week, 4 days agoPragdeashwar
7 months agoSchFiftySchFive
1 year, 8 months ago