What are four steps to manage incident response handling?
What are four steps to manage incident response handling? (Choose four.)
What does the acronym "CSIRT" stand for?
What does the acronym “CSIRT” stand for?
Which publication from the ISO covers security incident response?
Which publication from the ISO covers security incident response?
which action should be performed?
As a part of incident response, which action should be performed?
Which action is recommended to prevent an incident from spreading?
Which action is recommended to prevent an incident from spreading?
What is the most important reason for documenting an incident?
What is the most important reason for documenting an incident?
Which three tools should be used for incident response?
Which three tools should be used for incident response? (Choose three.)
what sequence do the proper eradicate/recovery steps take place?
In what sequence do the proper eradicate/recovery steps take place?
1) Re-image
2) Restore
3) Patch
4) Backup
Which four tools are used during an incident to collect data?
Which four tools are used during an incident to collect data? (Choose four.)
What is the most effective way to save the data on a system for later forensic use?
What is the most effective way to save the data on a system for later forensic use?