Which tool collects and analyzes log data to monitor critical activities in an organization?

Security information and event management (SIEM) tool

Intrusion detection system (IDS) tool

Intrusion prevention system (IPS) tool

IDPS

Quiz

•

Computers

•

University

•

Practice Problem

•

Hard

Melvinn ROXAS

Used 1+ times

FREE Resource

10 questions

Show all answers

1.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

The first phase of the NIST Incident Response Lifecycle is Preparation. What are the other phases? Select three answers.

Containment, Eradication, and Recovery

Detection and Analysis

Identify

Post-Incident Activity

2.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What type of process is the NIST Incident Response Lifecycle?

Linear

Observable

Cyclical

Synchronous

3.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Fill in the blank: An _____ is an observable occurrence on a network, system, or device.

incident

event

investigation

analysis

4.

MULTIPLE SELECT QUESTION

45 sec • 1 pt

A security professional investigates an incident. Their goal is to gain information about the 5 W's, which include what happened and why. What are the other W's? Select three answers.

Which type of incident it was

When the incident took place

Where the incident took place

Who triggered the incident

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which document outlines the procedures to follow after an organization experiences a ransomware attack?

An incident response plan

A security policy

A network diagram

A contact list

6.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Fill in the blank: The job of _____ is to investigate alerts and determine whether an incident has occurred.

Public relations representative

Incident coordinator

Technical lead

Security analyst

7.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which member of a CSIRT is responsible for tracking and managing the activities of all teams involved in the response process?

Public relations representative

Incident coordinator

Technical lead

Security analyst

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

13 questions

L1 - Computer Networks

Quiz

•

University

15 questions

DBC CHAPTER 3 - REVISION

Quiz

•

University

15 questions

4.6.4 Logic Gates

Quiz

•

10th Grade - Professi...

15 questions

ADVACOMT-Quiz No.1 (final term)

Quiz

•

University

10 questions

Algorithm analysis: divide & conquer theory

Quiz

•

University

13 questions

Five Nights At Freddy's: Security Breach Quiz

Quiz

•

KG - Professional Dev...

15 questions

Firewall and Network Security

Quiz

•

University

10 questions

Information systems concepts

Quiz

•

University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

20 questions

CompTIA Network+ - Ports and Protocols

Quiz

•

University

IDPS

10 questions

The first phase of the NIST Incident Response Lifecycle is Preparation. What are the other phases? Select three answers.

What type of process is the NIST Incident Response Lifecycle?

Fill in the blank: An _____ is an observable occurrence on a network, system, or device.

A security professional investigates an incident. Their goal is to gain information about the 5 W's, which include what happened and why. What are the other W's? Select three answers.

Which document outlines the procedures to follow after an organization experiences a ransomware attack?

Fill in the blank: The job of _____ is to investigate alerts and determine whether an incident has occurred.

Which member of a CSIRT is responsible for tracking and managing the activities of all teams involved in the response process?

Which tool collects and analyzes log data to monitor critical activities in an organization?

Which step in the SIEM process transforms raw data to create consistent log records?

Fill in the blank: Security orchestration, automation, and response (SOAR) is a collection of applications, tools, and workflows that uses automation to _____ security events.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers