Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Security+ > Automation, Orchestration, and Incident Response > Flashcards

Automation, Orchestration, and Incident Response Flashcards

1
Q

What is defined as a factor that introduced a nonconformance in an application, service, or system; the core causative issue that sets in motion the entire cause-and-effect reaction that ultimately leads to the problem?
A. Threat actor
B. Root cause
C. Kill chain
D. Threat agent

A

B. Root cause

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which statement is TRUE when considering automation?
A. Automation systems can also be a technical debt if implemented in a rush or untested
B. Automation and scripting will often increase costs for provisioning/onboarding users and devices
C. Automation is the best solution in every use case
D. Automation is useless without orchestration

A

A. Automation systems can also be a technical debt if implemented in a rush or untested

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which type of incident response test typically involves diagrams, floor plans, logical and virtual graphical visualizations to further eliminate gaps/errors?
A. Read-through
B. Walkthrough
C. Tabletop
D. Parallel

A

C. Tabletop

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which is commonly used to centralize the storage and analysis of logs and other security-related documentation to perform near real-time analysis?
A. NetFlow
B. SYSLOG
C. SIEM
D. SOAR

A

C. SIEM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is another term used for the incident response “Detection” phase?
A. Investigation
B. Initiation
C. Identification
D. Intelligence

A

C. Identification

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

In the forensic order of volatility, what would be considered the MOST volatile?
A. Temporary file systems and swap/slack space
B. CPU registers and its cache
C. Kernel statistics, tables, and caches
D. Memory (RAM)

A

B. CPU registers and its cache

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which service involves managing several or many automated tasks or processes?
A. Orchestration
B. Scripting
C. Batching
D. Automation

A

A. Orchestration

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which of these is a benefit of automation? Choose more than one option.
A. Faster reaction time
B. Enhanced customization
C. Enforcing baselines
D. Greater user intervention
E. Efficiency and productivity
F. Standardizing infrastructure and configuration

A

A. Faster reaction time
C. Enforcing baselines
E. Efficiency and productivity
F. Standardizing infrastructure and configuration

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Security+ (16 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions