What is the main function of a SIEM system?

To collect and analyze security event data

To provide endpoint detection and response capabilities

To aggregate threat intelligence data

Which of the following is considered an indicator of compromise?

Unusual outbound network traffic

What is a common goal during the containment phase of incident response?

To isolate affected systems to prevent further damage

A key component of IR preparedness includes:

Implementing multi-factor authentication.

Investigating suspicious network activity during an ongoing incident.

Restoring data from backups after a security breach.

Isolating compromised systems to prevent further damage.

Which of the following is NOT typically included in an IR plan?

Recommendations for specific software programs to purchase.

Procedures for identifying and reporting security incidents.

Roles and responsibilities for IR team members.

Communication protocols for notifying stakeholders during an incident.

The primary goal of the containment phase of an IR incident is to:

Stop the ongoing incident and prevent further damage.

Identify the root cause of the security incident.

Restore critical business functions to minimize downtime.

Train employees on how to prevent similar incidents in the future.

Which of the following describes a Zero-Day vulnerability?

A vulnerability that is exploited before it is known to the vendor

A known vulnerability that has a patch available

A previously patched vulnerability that reappears

A minor vulnerability with no significant impact

Which of the following is a proactive security measure that can help prevent incidents?

Conducting a post-incident review

Which of the following best describes the "eradication" step in the incident response process?

Removing the root cause of the incident

Monitoring systems for unusual activity

Containing the incident to prevent further spread

Which of the following activities is least likely to occur during the Preparation phase?

Deploying patches to affected systems

Developing an incident response policy

Conducting regular security awareness training

Establishing an incident response team

Vulnerability scanners are used to:

Identify weaknesses and misconfigurations in IT systems.

Collect and preserve digital evidence for investigations.

Isolate compromised systems to prevent lateral movement.

Train employees on cybersecurity best practices

Incident Response

Quiz

•

others

•

Practice Problem

•

Medium

Ruth Fatayo

Used 6+ times

FREE Resource

30 questions

Show all answers

1.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The main purpose of a hot site in disaster recovery is to:

Provide a secure location for storing sensitive data.

Offer a temporary workspace for displaced employees.

Enable a rapid switch-over to a fully operational backup environment.

Facilitate communication with stakeholders during a crisis.

2.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The "Identify" function in the NIST framework involves understanding:

The best methods for data encryption.

The types of antivirus software available.

Your organization's critical assets and vulnerabilities.

The latest cyberattack trends worldwide.

3.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is an example of an incident containment strategy?

Installing new hardware

Blocking malicious IP addresses

Updating user passwords regularly

Conducting a security awareness program

4.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

During which phase are lessons learned documented and analyzed?

Preparation

Detection and Analysis

Containment, Eradication, and Recovery

Post-Incident Activity

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A tool like Splunk is primarily used for:

Vulnerability scanning

Security information and event management

Endpoint detection

Malware analysis

6.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which phase of incident response includes conducting regular training and awareness programs for employees?

Preparation

Detection and Analysis

Containment, Eradication, and Recovery

Post-Incident Activity

7.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

In the context of incident response, what is the purpose of conducting a Business Impact Analysis (BIA)?

To detect security incidents

To establish communication channels

To understand the impact of disruptions on business functions

To automate incident response tasks

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

25 questions

Marketing 2 Indicator Assessment

Quiz

•

KG - University

25 questions

Fix It Lesson #2 Test Review '24

Quiz

•

KG - University

27 questions

Asessment on Analytical Exposition Text

Quiz

•

9th - 12th Grade

29 questions

Math 8: Rational Numbers Refresher - Review

Quiz

•

KG - University

25 questions

Pretest-COA(R-19)

Quiz

•

KG - University

25 questions

Vocab mini test 3

Quiz

•

University

25 questions

Quarter 2 - Benchmark Review #3

Quiz

•

9th - 12th Grade

25 questions

Pre-University Course 2023 Quiz 1

Quiz

•

KG - University

Popular Resources on Wayground

10 questions

Honoring the Significance of Veterans Day

Interactive video

•

6th - 10th Grade

9 questions

FOREST Community of Caring

Lesson

•

1st - 5th Grade

10 questions

Exploring Veterans Day: Facts and Celebrations for Kids

Interactive video

•

6th - 10th Grade

19 questions

Veterans Day

Quiz

•

5th Grade

14 questions

General Technology Use Quiz

Quiz

•

8th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

15 questions

Circuits, Light Energy, and Forces

Quiz

•

5th Grade

19 questions

Thanksgiving Trivia

Quiz

•

6th Grade

Discover more resources for others

10 questions

Honoring the Significance of Veterans Day

Interactive video

•

6th - 10th Grade

9 questions

FOREST Community of Caring

Lesson

•

1st - 5th Grade

10 questions

Exploring Veterans Day: Facts and Celebrations for Kids

Interactive video

•

6th - 10th Grade

19 questions

Veterans Day

Quiz

•

5th Grade

14 questions

General Technology Use Quiz

Quiz

•

8th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

15 questions

Circuits, Light Energy, and Forces

Quiz

•

5th Grade

19 questions

Thanksgiving Trivia

Quiz

•

6th Grade

Incident Response

30 questions

The main purpose of a hot site in disaster recovery is to:

The "Identify" function in the NIST framework involves understanding:

Which of the following is an example of an incident containment strategy?

During which phase are lessons learned documented and analyzed?

A tool like Splunk is primarily used for:

Which phase of incident response includes conducting regular training and awareness programs for employees?

In the context of incident response, what is the purpose of conducting a Business Impact Analysis (BIA)?

What is the main function of a SIEM system?

Which of the following is considered an indicator of compromise?

Unauthorized login attempts are an indicator of what type of security incident?

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for others