FITSP-M QUESTIONS AND ANSWERS
WITH COMPLETE SOLUTIONS 100%
CORRECT!!!
Question 1
What primary data type does the Privacy Act of 1974 aim to protect, and what are
its four core policy objectives?
ANSWER: Personally Identifiable Information (PII). Its four foundational
objectives are to restrict the unauthorized disclosure of records, increase
individuals' rights of access to agency records concerning themselves, grant
individuals the right to request amendments to inaccurate records, and establish a
statutory code of fair information practices. ✔✔
Question 2
What authority did the Paperwork Reduction Act of 1980 grant, and to which
agency?
ANSWER: It granted the Office of Management and Budget (OMB) the explicit
responsibility for creating comprehensive information policies and assisting other
federal agencies in complying with federal information mandates. ✔✔
Question 3
What is the primary intent and scope of the Computer Fraud and Abuse Act of
1986?
ANSWER: It was enacted to reduce the unauthorized accessing (cracking) of
computer systems and to explicitly address and prosecute federal computer-related
offenses. ✔✔
Computer Security Act of 1987 -ANSWER ✔✔-Assigned NIST to create security
standards/guidelines
-Required security policies and security plans
,-Mandated security training
-Superseded by FISMA (OMB (creates policies) and DHS(enforces/implements)).
The Clinger-Cohen Act (Information Technology Reform Act of 1996).... -
ANSWER ✔✔-Implemented The Capital Planning Investment Control (CPIC) IT
budget planning process
-Granted the Director of OMB oversight of acquisitions
-Established CIO positions in every Federal department and agency
-Defined Federal Enterprise Architecture
-Requires annual reporting to Congress
(Think C's)
The Cybersecurity Protection Act of 2014 -ANSWER ✔✔Amends the Homeland
Security Act of 2002 to establish a national cybersecurity and communications
integration center in the Department of Homeland Security (DHS) to carry out the
responsibilities of the DHS Under Secretary responsible for overseeing critical
infrastructure protection, cybersecurity, and related DHS programs.
The USA PATRIOT Act of 2001... -ANSWER ✔✔"Uniting and Strengthening
America by Providing Appropriate Tools Required to Intercept and Obstruct
Terrorism Act"
-Amended the definition of electronic surveillance
-Created law enforcement initiatives to forestall and respond to threats against the
US
The USA PATRIOT Act redefined money laundering to include -ANSWER ✔✔-
Making a financial transaction in the US to commit a crime
, -Bribery of public officials and fraudulent use of public funds
-Smuggling or illegal export of controlled munitions
-Smuggling of any item controlled under export regulations
Cyber Security Workforce Act requires agencies to... -ANSWER ✔✔-
Classify/identify cybersecurity positions
-Identify employees with cybersecurity training/certifications
The NICE (National Initiative for Cyber Security Education) is... -ANSWER ✔✔-
Operated by NIST
-A partnership between government, academia, and the private sector
-Focused on cybersecurity education, training, and workforce development.
Who sets policy and determines reporting frequency? -ANSWER ✔✔OMB
Who publishes Standards(if required) and Guidelines for OMB policies? -
ANSWER ✔✔NIST
What agency is tasked with implementation, oversight and monitoring against
established policies, standards, and guidelines? -ANSWER ✔✔DHS
What agency determines the FISMA metrics (as directed by OMB)? -ANSWER
✔✔DHS
What two types of documents does OMB publish? -ANSWER ✔✔-Circulars (A-
###)
WITH COMPLETE SOLUTIONS 100%
CORRECT!!!
Question 1
What primary data type does the Privacy Act of 1974 aim to protect, and what are
its four core policy objectives?
ANSWER: Personally Identifiable Information (PII). Its four foundational
objectives are to restrict the unauthorized disclosure of records, increase
individuals' rights of access to agency records concerning themselves, grant
individuals the right to request amendments to inaccurate records, and establish a
statutory code of fair information practices. ✔✔
Question 2
What authority did the Paperwork Reduction Act of 1980 grant, and to which
agency?
ANSWER: It granted the Office of Management and Budget (OMB) the explicit
responsibility for creating comprehensive information policies and assisting other
federal agencies in complying with federal information mandates. ✔✔
Question 3
What is the primary intent and scope of the Computer Fraud and Abuse Act of
1986?
ANSWER: It was enacted to reduce the unauthorized accessing (cracking) of
computer systems and to explicitly address and prosecute federal computer-related
offenses. ✔✔
Computer Security Act of 1987 -ANSWER ✔✔-Assigned NIST to create security
standards/guidelines
-Required security policies and security plans
,-Mandated security training
-Superseded by FISMA (OMB (creates policies) and DHS(enforces/implements)).
The Clinger-Cohen Act (Information Technology Reform Act of 1996).... -
ANSWER ✔✔-Implemented The Capital Planning Investment Control (CPIC) IT
budget planning process
-Granted the Director of OMB oversight of acquisitions
-Established CIO positions in every Federal department and agency
-Defined Federal Enterprise Architecture
-Requires annual reporting to Congress
(Think C's)
The Cybersecurity Protection Act of 2014 -ANSWER ✔✔Amends the Homeland
Security Act of 2002 to establish a national cybersecurity and communications
integration center in the Department of Homeland Security (DHS) to carry out the
responsibilities of the DHS Under Secretary responsible for overseeing critical
infrastructure protection, cybersecurity, and related DHS programs.
The USA PATRIOT Act of 2001... -ANSWER ✔✔"Uniting and Strengthening
America by Providing Appropriate Tools Required to Intercept and Obstruct
Terrorism Act"
-Amended the definition of electronic surveillance
-Created law enforcement initiatives to forestall and respond to threats against the
US
The USA PATRIOT Act redefined money laundering to include -ANSWER ✔✔-
Making a financial transaction in the US to commit a crime
, -Bribery of public officials and fraudulent use of public funds
-Smuggling or illegal export of controlled munitions
-Smuggling of any item controlled under export regulations
Cyber Security Workforce Act requires agencies to... -ANSWER ✔✔-
Classify/identify cybersecurity positions
-Identify employees with cybersecurity training/certifications
The NICE (National Initiative for Cyber Security Education) is... -ANSWER ✔✔-
Operated by NIST
-A partnership between government, academia, and the private sector
-Focused on cybersecurity education, training, and workforce development.
Who sets policy and determines reporting frequency? -ANSWER ✔✔OMB
Who publishes Standards(if required) and Guidelines for OMB policies? -
ANSWER ✔✔NIST
What agency is tasked with implementation, oversight and monitoring against
established policies, standards, and guidelines? -ANSWER ✔✔DHS
What agency determines the FISMA metrics (as directed by OMB)? -ANSWER
✔✔DHS
What two types of documents does OMB publish? -ANSWER ✔✔-Circulars (A-
###)
