DCOM 258 LESSONS 11- 21 EXAM QUESTIONS AND
ANSWERS WITH COMPLETE SOLUTIONS GRADED A++
Incident management relies heavily on the efficient allocation of resources.
Which of the following factors should an IT manager consider regarding the
overall scope of preparing for incidents in general? (Select all that apply.)
Downtime
Detection time
Recovery time
A systems administrator suspects that a virus has infected a critical server. In
which step of the incident response process does the administrator notify
stakeholders of the issue?
Identification
During weekly scans, a system administrator identifies a system that has
software installed that goes against security policy. The system administrator
removes the system from the network in an attempt to limit the effect of the
incident on the remainder of the network. Apply the Computer Security Incident
Handling Guide principles to determine which stage of the incident response life
cycle the administrator has entered.
Containment, eradication and recovery
ANSWERS WITH COMPLETE SOLUTIONS GRADED A++
Incident management relies heavily on the efficient allocation of resources.
Which of the following factors should an IT manager consider regarding the
overall scope of preparing for incidents in general? (Select all that apply.)
Downtime
Detection time
Recovery time
A systems administrator suspects that a virus has infected a critical server. In
which step of the incident response process does the administrator notify
stakeholders of the issue?
Identification
During weekly scans, a system administrator identifies a system that has
software installed that goes against security policy. The system administrator
removes the system from the network in an attempt to limit the effect of the
incident on the remainder of the network. Apply the Computer Security Incident
Handling Guide principles to determine which stage of the incident response life
cycle the administrator has entered.
Containment, eradication and recovery
