Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

IT unit 3 cybersecurity > LO4 > Flashcards

LO4 Flashcards

1
Q

Procedures to think about after a cyber security incident

A

What are the procedures? When do I need to implement them? in what order?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
1
Q

What is meant by responsibilities

A

who is involved? What is their authority?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Who is the target

A

The organisation? particular department? An individual?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the procedures to follow whilst responding to an incident

A

prepare
Detect
Contain
Eradicate
Recover
Lessons learnt

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the steps in preparation

A

Make sure employees are aware of what to do
Perform regular drills and mock scenarios
create an incident response plan

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the steps in detection

A

When did the incident happen
how did the incident happen
Who discovered the incident
What other areas have been affected
What was the source of the incident

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are the steps in containment

A

Restricting further damage being caused
Quarantining infected systems
Keeping system users informed of actions being taken

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are the steps in eradication

A

Identify and implement measures to eliminate further infection

Identify the origin of the infection and rebuild devices in a sandboxed environment

Removing/Repairing any infected system files

Checks for any remaining traces of infection

Identification of the vulnerability that was exploited

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the steps in recovery

A

Networked devices are tested for malware
Upon successful testing, devices are restored to their original state

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the steps in lessons learnt

A

Incident manager will write a report

Organisation will consider above advice and apply where feasible

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are critical incidents

A

Services are ruined that are essential to the organisation

Seriously breach the security if the organisations network

affect critical equipment or services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are significant incidents

A

Incidents that affect a smaller group of users/ devices

Interfere with non essential services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are minor incidents

A

Are able to be addressed by IT support technicians in the organisation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are negligble incidents

A

Have little or no impact on the organisation

Minor hardware failure

Loss of connectivity between devices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

IT unit 3 cybersecurity (4 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions