Question 109
Main Page
Your organization wants to implement the NIST Risk Management Framework. What is the final step in this framework?
A. Authorize systems
B. Categorize systems
C. Monitor security controls
D. Select control baselines
Answer: C. Monitor security controls
Ongoing monitoring ensures that implemented controls remain effective and adapt to system and threat environment changes.