Which of the following provides the BKST confirmation that the business continuity/disaster
recovery plan objectives have been achieved?

Which of the following situations would be the MOST concern to a security manager?

A customer credit card database has been breached by hackers. The FIRST step in dealing with
this attack should be to:

A root kit was used to capture detailed accounts receivable information. To ensure admissibility of
evidence from a legal standpoint, once the incident was identified and the server isolated, the next
step should be to:

When collecting evidence for forensic analysis, it is important to:

What is the BEST method for mitigating against network denial of service (DoS) attacks?

To justify the establishment of an incident management team, an information security manager
would find which of the following to be the MOST effective?

A database was compromised by guessing the password for a shared administrative account and
confidential customer information was stolen. The information security manager was able to detect
this breach by analyzing which of the following?

Which of the following is an example of a corrective control?

To determine how a security breach occurred on the corporate network, a security manager looks

at the logs of various devices. Which of the following BEST facilitates the correlation and review of
these logs?