CMMC-CCP Free Practice Test

Which method facilitates understanding by analyzing gathered artifacts as evidence?

1. A. Test
2. B. Examine
3. C. Behavior
4. D. Interview

Correct Answer: B

An employee is the primary system administrator for an OSC. The employee will be a core part of the assessment, as they perform most of the duties in managing and maintaining the systems. What would the employee be BEST categorized as?

1. A. Analyzer
2. B. Inspector
3. C. Applicable staff
4. D. Demonstration staff

Correct Answer: C

The Audit and Accountability (AU) domain has practices in:

1. A. Level 1.
2. B. Level 2.
3. C. Levels 1 and 2.
4. D. Levels 1 and 3.

Correct Answer: B

What is the LAST step when developing an assessment plan for an OSC?

1. A. Verify the readiness to conduct the assessment.
2. B. Perform certification assessment readiness review.
3. C. Update the assessment plan and schedule as needed
4. D. Obtain and record commitment to the assessment plan.

Correct Answer: D

A contractor has implemented IA.L2-3.5.3: Multifactor Authentication practice for their privileged users, however, during the assessment it was discovered that the OSC's standard users do not require MFA to access their endpoints and network resources. What would be the BEST finding?

1. A. The process is running correctly.
2. B. It is out of scope as this is a new acquisition.
3. C. The new acquisition is considered Specialized Assets.
4. D. Practice is NOT MET since the objective was not implemented.

Correct Answer: D