What is the difference between a threat and a risk?

• A.Risk represents the known and identified loss or danger in the system
• B.Threat represents a state of being exposed to an attack or a compromise either physically or logically
• C.Threat represents a potential danger that could take advantage of a weakness in a system
• D.Risk represents the nonintentional interaction with uncertainty in the system

Comment: *

Name: *

Email: *

Verification: *

The SOC team has confirmed a potential indicator of compromise on an endpoint. The team has narrowed the executable file's type to a new trojan family. According to the NIST Computer Security Incident Handling Guide, what is the next step in handling this event?

• A.Isolate the infected endpoint from the network.
• B.Prioritize incident handling based on the impact.
• C.Perform forensics analysis on the infected endpoint.
• D.Collect public information on the malware behavior.

Comment: *

Name: *

Email: *

Verification: *

Drag and drop the elements from the left into the correct order for incident handling on the right.

Correct Answer:

Comment: *

Name: *

Email: *

Verification: *

Which two elements of the incident response process are stated in NIST SP 800-61 r2? (Choose two.)

• A.detection and analysis
• B.post-incident activity
• C.risk assessment
• D.vulnerability management
• E.vulnerability scoring

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit.

Which application protocol is in this PCAP file?

• A.TCP
• B.SSH
• C.HTTP
• D.TLS

Comment: *

Name: *

Email: *

Verification: *