A cybersecurity team needs to investigate several incidents. In which step of the NIST incident response life cycle are the tools and assets, required to do this investigation, acquired and deployed?
- detection and analysis
- post-incident activities
- preparation
- containment, eradication, and recovery,
Explanation: Preparation is the first phase of the incident response life cycle. In this phase the Computer Security Incident Response Team CSIRT is created and deployed. Also in this phase the tools and assets needed by the team to investigate incidents are acquired and deployed.
Exam with this question: Cybersecurity Pathway Final Exam Answers
Please login or Register to submit your answer