The PRIMARY purpose of involving third-party teams for carrying out post event reviews of information security
The PRIMARY purpose of involving third-party teams for carrying out post event reviews of
information security incidents is to:
The MOST important objective of a post incident review is to:
The MOST important objective of a post incident review is to:
Which of the following is the BEST mechanism to determine the effectiveness of the incident response process?
Which of the following is the BEST mechanism to determine the effectiveness of the incident
response process?
The FIRST step in an incident response plan is to:
The FIRST step in an incident response plan is to:
Which of the following is the FIRST step a security manager should take in this situation?
An organization has verified that its customer information was recently exposed. Which of the
following is the FIRST step a security manager should take in this situation?
What is the FIRST thing the incident response manager should do?
A possible breach of an organization’s IT system is reported by the project manager. What is the
FIRST thing the incident response manager should do?
The PRIMARY consideration when defining recovery time objectives (RTOs) for information assets is:
The PRIMARY consideration when defining recovery time objectives (RTOs) for information
assets is:
What task should be performed once a security incident has been verified?
What task should be performed once a security incident has been verified?
Which of the following should be the FIRST action taken?
An information security manager believes that a network file server was compromised by a hacker.
Which of the following should be the FIRST action taken?
Which of the following would be the FIRST step to preserve and protect unauthorized intrusion activities?
An unauthorized user gained access to a merchant’s database server and customer credit card
information. Which of the following would be the FIRST step to preserve and protect unauthorized
intrusion activities?