Which of the following is the MOST important security consideration when developing an incident response strategy with a cloud provider?

• A.Escalation processes
• B.Security audit reports
• C.Technological capabilities
• D.Recovery time objective (RTO)

Comment: *

Name: *

Email: *

Verification: *

An incident response team has established that an application has been breached. Which of the following should be done NEXT?

• A.Maintain the affected systems in a forensically acceptable state
• B.Conduct a risk assessment on the affected application
• C.Inform senior management of the breach.
• D.Isolate the impacted systems from the rest of the network

Comment: *

Name: *

Email: *

Verification: *

An organization finds it necessary to quickly shift to a work-fromhome model with an increased need for remote access security.
Which of the following should be given immediate focus?

• A.Moving to a zero trust access model
• B.Enabling network-level authentication
• C.Enhancing cyber response capability
• D.Strengthening endpoint security

Comment: *

Name: *

Email: *

Verification: *

Reviewing which of the following would be MOST helpful when a new information security manager is developing an information security strategy for a non-regulated organization?

• A.Management's business goals and objectives
• B.Strategies of other non-regulated companies
• C.Risk assessment results
• D.Industry best practices and control recommendations

Comment: *

Name: *

Email: *

Verification: *

To gain a clear understanding of the impact that a new regulatory requirement will have on an organization's information security controls, an information security manager should FIRST:

• A.interview senior management.
• B.conduct a cost-benefit analysis.
• C.perform a gap analysis.
• D.Conduct a risk assessment.

Comment: *

Name: *

Email: *

Verification: *