In which phase of the NIST incident response life cycle is evidence gathered that can assist subsequent investigations by authorities?

IT Questions BankCategory: CCNA CyberOpsIn which phase of the NIST incident response life cycle is evidence gathered that can assist subsequent investigations by authorities?
In which phase of the NIST incident response life cycle is evidence gathered that can assist subsequent investigations by authorities? 1Administrator Staff asked 5 months ago
In which phase of the NIST incident response life cycle is evidence gathered that can assist subsequent investigations by authorities?

  • postincident activities
  • detection and analysis
  • preparation
  • containment, eradication, and recovery

Explanation: NIST defines four phases in the incident response process life cycle. It is in the containment, eradication, and recovery phase that evidence is gathered to resolve an incident and to help with subsequent investigations.

More Questions: Modules 26 – 28: Analyzing Security Data Group Exam


Related Articles