What is an incident response plan?

• A.an organizational approach to security management to ensure a service lifecycle and continuous improvements
• B.an organizational approach to system backup and data archiving aligned to regulations
• C.an organizational approach to disaster recovery and timely restoration of operational services
• D.an organizational approach to events that could lead to asset loss or disruption of operations

Comment: *

Name: *

Email: *

Verification: *

Which two elements of the incident response process are stated in NIST Special Publication 800-61 r2?
(Choose two.)

• A.detection and analysis
• B.post-incident activity
• C.vulnerability management
• D.risk assessment
• E.vulnerability scoring

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit.

What is depicted in the exhibit?

• A.IIS logs
• B.UNIX-based syslog
• C.Apache logs
• D.Windows Event logs

Comment: *

Name: *

Email: *

Verification: *

An engineer needs to fetch logs from a proxy server and generate actual events according to the data received.
Which technology should the engineer use to accomplish this task?

• A.Firepower
• B.Web Security Appliance
• C.Stealthwatch
• D.Email Security Appliance

Comment: *

Name: *

Email: *

Verification: *

How does an attacker observe network traffic exchanged between two users?

• A.command injection
• B.man-in-the-middle
• C.port scanning
• D.denial of service

Comment: *

Name: *

Email: *

Verification: *