100%(11)11 out of 11 people found this document helpful
This preview shows page 1 - 4 out of 14 pages.
CIS 359- DISASTER RECOVERY MANAGEMENT MIDTERM EXAMQuestion 11 out of 1 pointsA(n) ____ is a CSIRT team member, other than the team leader, who is currently performing the responsibilities of the team leader in scanning the organization’s information infrastructure for signs of an incident.Selected Answer:IR duty officerCorrect Answer:IR duty officerQuestion 21 out of 1 pointsThe Southeast Collegiate Cyber Defense Competition is unique in that it focuses on the operational aspect of managing and protecting an existingnetwork infrastructure. Unlike “capture-the-flag ” exercises, this competition is exclusively a real-world ____ competition.Selected Answer:defensiveCorrect Answer:defensiveQuestion 31 out of 1 pointsThe U.S. National Institute of Standards and Technology recommends a set of tools for the CSIRT including incident reporting mechanisms with which users can report suspected incidents. At least one of these mechanisms should permit people to report incidents ____.Selected Answer:anonymouslyCorrect Answer:anonymouslyQuestion 41 out of 1 pointsThe training delivery method with the lowest cost to the organization is ____.
CIS 359- DISASTER RECOVERY MANAGEMENT MIDTERM EXAMSelected Answer:self-study (noncomputerized)Correct Answer:self-study (noncomputerized)Question 51 out of 1 pointsShould an incident begin to escalate, the CSIRT team leader continues to add resources and skill sets as necessary to attempt to contain and terminate the incident. The resulting team is called the ____ for this particular incident.Selected Answer:reaction forceCorrect Answer:reaction forceQuestion 61 out of 1 pointsThe responsibility for creating an organization’s IR plan often falls to the ____.Selected Answer:chief information security officerCorrect Answer:chief information security officerQuestion 71 out of 1 pointsA(n) ____ is a detailed examination of the events that occurred, from first detection of an incident to final recovery.Selected Answer:after-action reviewCorrect Answer:after-action review
CIS 359- DISASTER RECOVERY MANAGEMENT MIDTERM EXAMQuestion 81 out of 1 pointsIncident analysis resources include network diagrams and lists of ____, such as database servers.Selected Answer:critical assetsCorrect Answer:critical assetsQuestion 91 out of 1 pointsA ____ is a document that describes how, in the event of a disaster, critical business functions continue at an alternate location while the organization recovers its ability to function at the primary site.Selected Answer:business continuity planCorrect Answer:business continuity planQuestion 101 out of 1 points____ ensures that only those with the rights and privileges to access information are able to do so.