5-3a Rev
Across
- 2. Will forgo testing when directed by the 616 OC to implement an emergency remediation tasking.
- 3. 616 OC will task _____ with Priority and Emergency vulnerability remediation actions.
- 6. Organization that verifies compliance percentages via vulnerability scans provided by the organization responsible for the applicable assets.
- 9. Are responsible for populating the AFIN 3% test group.
- 10. Which RMF step is associated with formally authorizing the systems for operations.
- 11. One of two types of VRO deployments.
- 13. A process that is automated by the use of an application called eMASS.
- 15. Which RMF step involves identifying org’s essential activities, mission, and security levels?
- 16. Three overall IA areas or Contributing Factors (with Culture and Conduct).
- 17. Is responsible for adding the ARAD and MECM Current Branch agents as permanent elements of all SDC/SSC baselines.
- 18. PMOs may utilize _______ groups to isolate systems from AFIN-wide patches and updates.
Down
- 1. responsible for remediating the remaining 5% of systems that are considered non-compliant.
- 3. Implements a goal of 95% compliance of vulnerability remediation actions using enterprise remediation tools.
- 4. A flaw or weakness in system security procedures, design, implementation, or internal controls that could be utilized by an adversary to breach the AFIN.
- 5. Which RMF step is associated with verifying sec controls are implemented/operating correctly and producing desired outcome.
- 7. The goal of the vulnerability remediation/mitigation process is to mitigate the risks associated with vulnerabilities through the implementation of ____.
- 8. A DISA-led formal inspection designed to increase accountability and the security posture of DoD Information Networks according to DoD standards.
- 12. Which RMF step is associated with maintaining ongoing S/A.
- 14. One of two types of VRO deployments.
- 19. Will alert the NOS when non-cliented systems rises to 10% or higher.