69Which of the following actions should be taken when an information security manager discovers that a hacker is foot printing the network perimeter?

70Which of the following are the MOST important criteria when selecting virus protection software?

When performing a business impact analysis (BIA), which of the following should calculate the recovery time and cost estimates?

Which of the following is MOST closely associated with a business continuity program?

Which of the following application systems should have the shortest recovery time objective (RTO)?

A computer incident response team (CIRT) manual should PRIMARILY contain which of the following documents?

The PRIMARY purpose of performing an internal attack and penetration test as part of an incident response program is to identify:

Which of the following would represent a violation of the chain of custody when a backup tape has been identified as evidence in a fraud…

When properly tested, which of the following would MOST effectively support an information security manager in handling a security breach?

Isolation and containment measures for a compromised computer has been taken and information security management is…