Module 1: Security Incident Response Overview and Data Visualization Flashcards
What is the overarching goal of ServiceNow’s Security Incident Response Implementation?
a. Containment
b. Detection
c. Root Cause Identification
d. Prioritization
e. Enrichment
a. Containment
In the baseline, the Security Incident Administrator and ServiceNow Administrator share responsabilities and access in the ServiceNow platform.
a. True
b. false
a. True
For which of the following is the Security Incident Response Team responsible?
a. Certifying
b. Awareness Activities
c. Coaching
d. Training
e. Testing
f. Monitoring
All answers are correct.
a. Certifying
b. Awareness Activities
c. Coaching
d. Training
e. Testing
f. Monitoring
Which of the following states are included in the NIST life cycle? Select all that apply.
a. Monitoring
b. Detection and Analysis
c. Preparation
d. Post-Incident Activity
e. Resolution
f. Containment, Eradication, and Recovery
Answers: b, c, d, f
b. Detection and Analysis
c. Preparation
d. Post-Incident Activity
f. Containment, Eradication, and Recovery
Security Incidents are always IT-related issues?
a. True
b. False
b. False