Scenario: Critical servers show signs of erratic behavior within your organization's intranet. Initial information indicates the systems are under attack from an outside entity. As the Chief Information Security Officer (CISO) , you decide to deploy the Incident Response Team (IRT) to determine the details of this incident and take action according to the information available to the team. During initial investigation, the team suspects criminal activity but cannot initially prove or disprove illegal actions. What is the MOST critical aspect of the team's activities?
A) Regular communication of incident status to executives
B) Preservation of information
C) Eradication of malware and system restoration
D) Determination of the attack source
Correct Answer:
Verified
Q189: Scenario: Critical servers show signs of erratic
Q190: Scenario: You are the newly hired Chief
Q191: Which type of scan is used on
Q192: Scenario: Your company has many encrypted telecommunications
Q193: Scenario: An organization has recently appointed a
Q195: Scenario: A CISO has several two-factor authentication
Q196: Scenario: Your organization employs single sign-on (user
Q197: Scenario: A Chief Information Security Officer (CISO)
Q198: Scenario: An organization has made a decision
Q199: A consultant is hired to do physical
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents