Nist incident response - Study guides, Class notes & Summaries

ISC2 CAP PRACTICE TEST QUESTIONS: 1 – 50 Exam Questions with 100% Correct Answers 2024 1. Continuously observing and evaluating the information system security controls during the system life cycle to determine whether changes have occurred that will negatively impact the system security" best describes which process in the certification and accreditation methodology? a. Continuous monitoring b. Continuous improvement c. Continuous management d. Continuous development - answerContin...

Which NIST special publication is centered around incident response handling? Ans: NIST 800-61 Which of the following is NOT a CIRT service? Ans: Hiring consultants to fix the problem Which action is NOT part of the process of handling an incident? Ans: Analyze Match the terms: A) Classification of events to understand trends, charges in vectors, improvements in detection. B) Events classified as incidents and investigated during the given period. C) Events detected and investigated d...

Which of the following is the best example of a deterrent control? A. A log aggregation system B. Hidden cameras onsite. C. A guard posted outside the door. D. Backup recovery systems. C. A guard posted outside the door. Deterrents have to be visible to prevent an attack. A guard visible outside the door could help prevent physical attacks. Enacted in 2002, this US law requires every federal agency to implement information security programs, including significant reporti...

(ISC)2 CC Practice Exam 1 Questions with 100% Correct Answers Sensitivity is a measure of the ...: - answer... importance assigned to information by its owner, or the purpose of representing its need for protection. (Sensitivity is also defined as the measure of the importance assigned to information by its owner, or the purpose of representing its need for protection) The process of verifying or proving the user's identification is known as: - answerAuthentication (Authentication is th...

ISC2 Certified in Cybersecurity: Chapter 3 Exam Questions With 100% Correct Answers _____ _____ plan responds to unexpected changes in operating conditions to keep the business operating. Incident Response _____ _____ plan enables the business to continue operating throughout a crisis. Business Continuity _____ _____ plan is activated to help a business return to normal operations as quickly as possible Disaster Recovery The loss of control, compromise, unauthorized disclosure, unauth...

(ISC)2 CC Practice Exam 1 Questions with 100% Correct Answers Sensitivity is a measure of the ...: - answer... importance assigned to information by its owner, or the purpose of representing its need for protection. (Sensitivity is also defined as the measure of the importance assigned to information by its owner, or the purpose of representing its need for protection) The process of verifying or proving the user's identification is known as: - answerAuthentication (Authentication is th...

Which one of the following objectives is not one of the three main objectives that information security professionals must achieve to protect their organizations against cybersecurity threats? - correct answer nonrepudiation Tommy is assessing the security database servers in his datacenter and realizes that one of them is missing a critical Oracle security patch. What type of situation has Tommy detected? - correct answer vulnerability Ben is preparing to conduct a cybersecurity risk asse...

ISC2 Certified in Cybersecurity: Chapter 3 Exam Questions With 100% Correct Answers _____ _____ plan responds to unexpected changes in operating conditions to keep the business operating. Incident Response _____ _____ plan enables the business to continue operating throughout a crisis. Business Continuity _____ _____ plan is activated to help a business return to normal operations as quickly as possible Disaster Recovery The loss of control, compromise, unauthorized disclosure, unauth...

ISC2 Certified in Cybersecurity: Chapter 3 Exam Questions With 100% Correct Answers _____ _____ plan responds to unexpected changes in operating conditions to keep the business operating. Incident Response _____ _____ plan enables the business to continue operating throughout a crisis. Business Continuity _____ _____ plan is activated to help a business return to normal operations as quickly as possible Disaster Recovery The loss of control, compromise, unauthorized disclosure, unauth...

ALE Annual Loss Expectancy. ALE = SLE x ARO SLE Single Loss Expectancy ARO Annualized Rate of Occurrence Threat Vector The way in which an attacker poses a threat Mean Time Between Failures Anticipated lifetime of a component (can be repaired) MTBF Mean Time Between Failures Mean Time To Failure Anticipated lifetime of a component (cannot be repaired) MTTF Mean Time To Failure Mean Time To Restore How long it takes to repair a comp...