- All Exams Instant Download
What contains a predefined set of instructions or processes that describes the management policy, procedures, and written plan defining recovery of information systems?
What contains a predefined set of instructions or processes that describes the management policy, procedures, and written plan defining recovery of information systems?A . RASB . DRPC . BIAD . BCPView AnswerAnswer: D
Which part of the NIST Framework are they focusing on?
An organization is creating a customized version of the NIST Cybersecurity Framework to align with its unique risk profile and business requirements. They are currently mapping their organizational priorities and risk tolerance to the framework functions. Which part of the NIST Framework are they focusing on?A . CoreB . TiersC...
Match each Detect Function component with its primary purpose.
Match each Detect Function component with its primary purpose. Component Continuous Monitoring Anomalies and Events Detection Processes Threat Intelligence Purpose A) Real-time observation for suspicious activities B) Identifying unusual patterns C) Formalizing detection protocols D) Analyzing data to identify threatsA . Continuous Monitoring - A Anomalies and Events - B...
Match each Protect Function subcategory with its main focus.
Match each Protect Function subcategory with its main focus. Subcategory Data Security Awareness Training Protective Technology Baseline Configuration Focus A) Ensuring only authorized personnel have access B) Educating employees on cybersecurity practices C) Implementing tools to safeguard systems and networks D) Establishing a secure starting point for systemsA . Data...
Which NIST Cybersecurity Framework tier describes an organization that adapts its cybersecurity practices based on evolving threats?
Which NIST Cybersecurity Framework tier describes an organization that adapts its cybersecurity practices based on evolving threats?A . Tier 1: PartialB . Tier 2: Risk-InformedC . Tier 3: RepeatableD . Tier 4: AdaptiveView AnswerAnswer: D
What process is used to identify an organization’s physical, digital, and human resource, as required in their Business Impact Analysis?
What process is used to identify an organization’s physical, digital, and human resource, as required in their Business Impact Analysis?A . Risk Management StrategyB . Risk AssessmentC . Risk TreatmentD . Asset InventoryView AnswerAnswer: D
The __________ process ensures that businesses can continue essential operations with minimal interruption after a cybersecurity incident.
The __________ process ensures that businesses can continue essential operations with minimal interruption after a cybersecurity incident.A . Incident DetectionB . Business ContinuityC . Access ControlD . Incident ResponseView AnswerAnswer: B
Which of the following are benefits of implementing continuous monitoring within the Detect Function? (Select two)
Which of the following are benefits of implementing continuous monitoring within the Detect Function? (Select two)A . Early detection of security incidentsB . Improved access control managementC . Enhanced visibility of network activityD . Reduction in hardware costsView AnswerAnswer: AC
In the context of the Recover Function, which of the following are critical for achieving business resiliency? (Select two)
In the context of the Recover Function, which of the following are critical for achieving business resiliency? (Select two)A . Risk assessment toolsB . Disaster recovery testingC . Incident response proceduresD . Cloud-based backup solutionsView AnswerAnswer: BD
The NIST Cybersecurity Framework is structured around which main elements? (Select two)
The NIST Cybersecurity Framework is structured around which main elements? (Select two)A . CoreB . TiersC . ObjectivesD . RoadmapsView AnswerAnswer: AB
