Module 1: Security Incident Response Overview and Data Visualization Flashcards

1
Q

What is the overarching goal of ServiceNow’s Security Incident Response Implementation?
a. Containment
b. Detection
c. Root Cause Identification
d. Prioritization
e. Enrichment

A

a. Containment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

In the baseline, the Security Incident Administrator and ServiceNow Administrator share responsabilities and access in the ServiceNow platform.
a. True
b. false

A

a. True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

For which of the following is the Security Incident Response Team responsible?
a. Certifying
b. Awareness Activities
c. Coaching
d. Training
e. Testing
f. Monitoring

A

All answers are correct.

a. Certifying
b. Awareness Activities
c. Coaching
d. Training
e. Testing
f. Monitoring

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which of the following states are included in the NIST life cycle? Select all that apply.
a. Monitoring
b. Detection and Analysis
c. Preparation
d. Post-Incident Activity
e. Resolution
f. Containment, Eradication, and Recovery

A

Answers: b, c, d, f

b. Detection and Analysis
c. Preparation
d. Post-Incident Activity
f. Containment, Eradication, and Recovery

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Security Incidents are always IT-related issues?
a. True
b. False

A

b. False

How well did you know this?
1
Not at all
2
3
4
5
Perfectly