CIS-SIR Questions Bank

Certified Implementation Specialist - Security Incident Response Exam Questions and Answers

Question 5

Knowledge articles that describe steps an analyst needs to follow to complete Security incident tasks might be associated to those tasks through which of the following?

Options:

Work Instruction Playbook

Flow

Workflow

Runbook

Flow Designer

Question 6

What is calculated as an arithmetic mean taking into consideration different values in the CI, Security Incident, and User records?

Options:

Priority

Business Impact

Severity

Risk Score

Question 7

Select the one capability that retrieves a list of running processes on a CI from a host or endpoint.

Options:

Get Network Statistics

Isolate Host

Get Running Processes

Publish Watchlist

Block Action

Sightings Search

Question 8

Which of the following tag classifications are provided baseline? (Choose three.)

Options:

Traffic Light Protocol

Block from Sharing

IoC Type

Severity

Cyber Kill Chain Step

Escalation Level

Enrichment whitelist/blacklist

Winter Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Certified Implementation Specialist - Security Incident Response Exam Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce