Lesson 12 Acronyms

Question 1

IR

Answer 1

Incident Response

Question 2

SOAR

Answer 2

Security Orchestration, Automation, and Response

Question 3

CIRT

Answer 3

Computer Incident Response Team

Question 4

CSIRT

Answer 4

Computer Security Incident Response Team

Question 5

CERT

Answer 5

Computer Emergency Response Team

Question 6

SOC

Answer 6

Security Operations Center

Question 7

IRP

Answer 7

Incident Response Plan

Question 8

TTPs

Answer 8

Tactics, Techniques, and Procedures

Question 9

SOP

Answer 9

Standard Operating Procedure

Question 10

LLR

Answer 10

Lessons Learned Report

Question 11

AAR

Answer 11

After Action Report

Question 12

SIEM

Answer 12

Security Information and Event Manager

Question 13

ESI

Answer 13

Electronically Stored Information

Question 14

EPP

Answer 14

Endpoint Protection Platform

Question 15

EDR

Answer 15

Enhanced Detection and Response

Question 16

XDR

Answer 16

Extended Detection and Response

Question 17

RNA

Answer 17

Retrospective Network Analysis

Question 18

MUA

Answer 18

Mail User Agent

Question 19

MDA

Answer 19

Mail Delivery Agent

Question 20

MTA

Answer 20

Mail Transfer Agent

Question 21

ML

Answer 21

Machine Learning

Question 22

IPFIX

Answer 22

IP Flow Information Export

Question 23

IETF

Answer 23

Internet Engineering Task Force

Question 24

OVAL

Answer 24

Open Vulnerability and Assessment Language

Question 25

XCCDF

Answer 25

Extensible Configuration Checklist Description Format

Question 26

NIST

Answer 26

National Institute of Standards and Technology

Question 27

FIPS

Answer 27

Federal Information Processing Standards

Question 28

IOC

Answer 28

Indicators of Compromise

Question 29

FIM

Answer 29

File Integrity Monitoring

Question 30

UEBA

Answer 30

User and Entity Behavior Analytics