Special Summer Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

CFR-410 Exam Results

Page: 10 / 14
Total 180 questions

CyberSec First Responder (CFR) Exam Questions and Answers

Question 37

A company that maintains a public city infrastructure was breached and information about future city projects was leaked. After the post-incident phase of the process has been completed, which of the following would be

PRIMARY focus of the incident response team?

Options:

A.

Restore service and eliminate the business impact.

B.

Determine effective policy changes.

C.

Inform the company board about the incident.

D.

Contact the city police for official investigation.

Question 38

An organization was recently hit with a ransomware attack that encrypted critical documents and files that were stored on the corporate file server.

Which of the following provides the organization with the BEST chance for recovering their data?

Options:

A.

Application white listing!

B.

Antivirus software

C.

Paying the ransom

D.

Offsite backups

Question 39

According to SANS, when should an incident retrospective be performed?

Options:

A.

After law enforcement has identified the perpetrators of the attack.

B.

Within six months following the end of the incident.

C.

No later than two weeks from the end of the incident.

D.

Immediately concluding eradication of the root cause

Question 40

Which term describes the process of collecting logs from many sources across an IT infrastructure into a single, centralized platform to be reviewed and analyzed?

Options:

A.

Log processing

B.

Log aggregation

C.

Log monitoring

D.

Log normalization

E.

Log correlation

Page: 10 / 14
Total 180 questions