Which of these should NOT be on an Incident Form?

Date and Time of incident Detection

Having IR procedures is important because (select two) ;

Reduce errors made during the incident

Ensure that evidence is collected and handled in a forensic sound manner

Ensures we covered all future threats

Why should an IR Plan include a procedure for other incidents outside those defined?

Yes - this incident still needs to reported and analysed

Yes - this indicent might be relatable to something in our procedures.

No , dont include this - its outside our Team, so should be ignored

It shouldn't - it's not something we were asked to consider.

What is the difference between an Incident Response Process and an Incident Response Procedure?

IR Process is the whole lifecycle and an IR Procedure is a specific set of actions done during an IR process.

IR Procedures are the whole lifecycle and an IR Process a specific set of actions done during an IR Procedure.

CO2517 Week 05

Authored by Christopher Finnigan

Computers

University

Used 2+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

15 questions

Show all answers

REORDER QUESTION

1 min • 1 pt

Recap: Put these in the right order

Post-Incident Activity

Containment Eradication & Recovery

Detection & Analysis

Preparation

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of these describes an Incident Response Plan

Provides a clear guide on exactly what to do during an data breach.

Outlines the processes involved in declaring a disaster and ensuring continuity of business operations

Describes how to maintain operations during and after an indicent

Tracks the movement of evidence throughout the investigation

Answer explanation

The IR plan is the overarching document that gives your team clear guidance on exactly what to do during incidents, data breaches, and other pressure-packed situations when it’s easy to get overwhelmed. If you realize you may be facing a cybersecurity incident, the IR plan will help direct your actions.

MULTIPLE SELECT QUESTION

45 sec • 1 pt

What 2 types of information are typically in an IR Plan? Select two

IR Information - such as the detection processes

Organisational - such as the reporting mechanisms

External Client Information - including competition information.

Business Profit information

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of these is NOT part of the Preparation for an Incident Response

Incident Response Policy

Incident Response Plan

Standard Operating Procedures

Monitoring

Answer explanation

Monitoring for some time after the incident to observe operations and check for abnormal behaviors is usually part of Recovery

MULTIPLE SELECT QUESTION

45 sec • 1 pt

Preparation includes communication elements, such as (choose two);

Contact details of all staff as a IR Team.

Contact details of all staff within the business.

Escalation Process

documentation for predicted questions.

MATCH QUESTION

1 min • 1 pt

Match the following to its purpose

Why does this incident need to be managed.

IR programme mission

Critical actors in the response.

What goals are aimed for

Objectives of the IR

IR Scope

Policy limitations

Roles and Responsibilities

FILL IN THE BLANK QUESTION

1 min • 1 pt

Policy requirements should include the need to have all incidents recorded and __________ before analysis begins.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

Java Quiz 1

Quiz

•

University

15 questions

Computer Applications in Banking and Finance Quiz

Quiz

•

University

10 questions

Software Testing

Quiz

•

University

10 questions

Ke-Al Azhar 8 an

Quiz

•

7th Grade - University

20 questions

Review Quiz (Chapter 3&4)

Quiz

•

University

20 questions

C Programming Unit-1 Test-2

Quiz

•

University

10 questions

C++ Array Quiz

Quiz

•

University

10 questions

Microsoft Word

Quiz

•

University

Popular Resources on Wayground

8 questions

2 Step Word Problems

Quiz

•

KG - University

20 questions

Comparing Fractions

Quiz

•

4th Grade

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

Latin Bases claus(clois,clos, clud, clus) and ped

Quiz

•

6th - 8th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

7 questions

The Story of Books

Quiz

•

6th - 8th Grade

Discover more resources for Computers

8 questions

2 Step Word Problems

Quiz

•

KG - University

7 questions

Comparing Fractions

Interactive video

•

1st Grade - University

7 questions

Force and Motion

Interactive video

•

4th Grade - University

10 questions

14.2 Independent/Dependent Variables

Quiz

•

KG - University

18 questions

Great Lakes States

Quiz

•

KG - University

7 questions

DNA, Chromosomes, Genes, and Traits: An Intro to Heredity

Interactive video

•

11th Grade - University

7 questions

Reflexive Verbs in Spanish

Lesson

•

9th Grade - University

7 questions

Narrative Writing 1

Interactive video

•

4th Grade - University

CO2517 Week 05

Recap: Put these in the right order

Which of these describes an Incident Response Plan

What 2 types of information are typically in an IR Plan? Select two

Which of these is NOT part of the Preparation for an Incident Response

Monitoring for some time after the incident to observe operations and check for abnormal behaviors is usually part of Recovery

Preparation includes communication elements, such as (choose two);

Match the following to its purpose

Policy requirements should include the need to have all incidents recorded and __________ before analysis begins.

High-priority incidents should be escalated to the CEO.

Which of these should NOT be on an Incident Form?

IR Procedures include ;

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers