CompTIA Security Plus Mock Test Q249

A company has decided to move large data sets to a cloud provider in order to limit the costs of new infrastructure. Some of the data is sensitive and the Chief Information Officer wants to make sure both parties have a clear understanding of the controls needed to protect the data. Which of the following types of interoperability agreement is this?

A. ISA
B. MOU
C. SLA
D. BPA


Correct Answer: A
Section: Compliance and Operational Security

Explanation:
ISA/ Interconnection Security Agreement is an agreement between two organizations that have connected systems. The agreement documents the technical requirements of the connected systems.

Incorrect Answers:
B: MOU/ Memorandum of Understanding is a document is used in many settings in the information industry. It is a brief summary of which party is responsible for what portion of the
work.
C: SLA/ Service-Level Agreement define the level of service to be provided. For example, with a company providing technical support, the SLA will determine the response time (for
example, will a tech be on site within 4 hours? 8 hours?) and the level of response (will there be a replacement part if needed?).
D: BPO/ Blanket Purchase Order is usually applicable to government agencies. It is an Agreement between a government agency and a private company for ongoing purchases of
goods or services.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, p. 398