Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Discussions
  1. Home
  2. Discussions
  3. Cyber AB
  4. CMMC
  5. CMMC-CCA Discussions
  6. CMMC-CCA Exam Topic 4 Question 35 Discussion
 Cyber AB Discussions
Exam CMMC-CCA All Questions
Exam CMMC-CCA All Questions

View all questions & answers for the CMMC-CCA exam

Go to Exam

Cyber AB CMMC CMMC-CCA Question # 35 Topic 4 Discussion

CMMC-CCA Exam Topic 4 Question 35 Discussion:
Question #: 35
Topic #: 4

An OSC has provided its System Security Plan (SSP) as evidence for several CMMC practices related to system security. During your examination of the SSP, you discover a section outlining procedures for user access controls. However, upon further review, you find no mention of procedures for managing privileged accounts, which is a critical aspect of secure system access. If the OSC provides a separate document outlining privileged account management procedures, and upon review, these procedures appear sufficient, how should the Lead Assessor proceed with the SSP as evidence?
A.

Request that the OSC formally incorporate the privileged account management procedures into the SSP for consistency.

B.

Accept both the SSP and the separate document as evidence and proceed with the assessment.

C.

Deduct points from the overall assessment score due to the initial oversight in the SSP.

D.

Mark the related user access control practice as "Not Met" due to the initial deficiency in the SSP.

Get Premium CMMC-CCA Questions
Actual exam question for Cyber AB CMMC-CCA exam by Draven15459 at May 1, 2026, 9:28:57 PM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit