New Year Sale Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: ac4s65

An OSC uses an External Service Provider (ESP) to support part of its CUI processing...

Cyber AB CMMC-CCA Full Course Access
Cyber AB CMMC-CCA View All Questions

An OSC uses an External Service Provider (ESP) to support part of its CUI processing scope. The OSC has selected an accredited ESP with FedRAMP MODERATE authorization. The OSC has a contract requiring the ESP to meet its security requirements. The ESP has provided a Shared Responsibility Matrix (SRM) consistent with the contract terms.

When assessing these assets, what should the assessor MOST carefully review?

A.

The contract terms to ensure that the OSC’s CMMC Level 2 requirements are in the contract, and the SRM to ensure that the shared responsibilities are well defined.

B.

The contract terms to ensure that the OSC’s CMMC Level 2 requirements are in the contract, and the SRM to ensure that the ESP’s responsibilities are well defined.

C.

The ESP’s FedRAMP MODERATE authorization to ensure the OSC’s CMMC Level 2 requirements are MET, and the SRM to ensure that the ESP’s responsibilities are well defined.

D.

The ESP’s FedRAMP MODERATE authorization to ensure the OSC’s CMMC Level 2 requirements are MET, and the SRM to ensure that the shared responsibilities are well defined.

CMMC-CCA PDF/Engine
  • Printable Format
  • Value of Money
  • 100% Pass Assurance
  • Verified Answers
  • Researched by Industry Experts
  • Based on Real Exams Scenarios
  • 100% Real Questions
buy now CMMC-CCA pdf
Get 65% Discount on All Products, Use Coupon: "ac4s65"
Next
An OSC has two business locations.
An organization has contracted with a third party for system maintenance and support.
Previous