Which type of control is concerned with restoring controls?
Which type of control is concerned with restoring controls?
which step are you in?
In the course of responding to and handling an incident, you work on determining the root cause of the incident.
In which step are you in?
When referring to a computer crime investigation, which…
When referring to a computer crime investigation, which of the following would be the MOST important step
required in order to preserve and maintain a proper chain of custody of evidence:
when there are security violations?
Who is responsible for initiating corrective measures and capabilities used when there are security violations?
Another example of Computer Incident Response Team (CIR…
Another example of Computer Incident Response Team (CIRT) activities is:
At a more generic level, evidence should have some prob…
The exact requirements for the admissibility of evidence vary across legal systems and between different cases
(e.g., criminal versus tort). At a more generic level, evidence should have some probative value, be relevant to
the case at hand, and meet the following criteria which are often called the five rules of evidence:
Which of the following questions is LESS likely to help…
Which of the following questions is LESS likely to help in assessing controls over hardware and software
maintenance?
Which of the following is NOT a preventive operational …
Which of the following is NOT a preventive operational control?
Which element must computer evidence have to be admissi…
Which element must computer evidence have to be admissible in court?
which security level is the first to require a system t…
According to the Orange Book, which security level is the first to require a system to support separate operator
and system administrator roles?