What is the purpose of the policy element in a computer security incident response capability of an organization, as recommended by NIST?
- It provides a roadmap for maturing the incident response capability.
- It provides metrics for measuring the incident response capability and effectiveness.
- It defines how the incident response teams will communicate with the rest of the organization and with other organizations.
- It details how incidents should be handled based on the organizational mission and functions.
Explanation: NIST recommends creating policies, plans, and procedures for establishing and maintaining a CSIRC. A purpose of the policy element is to detail how incidents should be handled based on the mission and functions of an organization.
Exam with this question: CCNA Cyber Ops Chapter 13 Exam Answers
Exam with this question: CyberOps Associate (Version 1.0) - Module 28: Digital Forensics and Incident Analysis and Response Answers
Exam with this question: Cyber Threat Management - 6.6.2 Digital Forensics and Incident Analysis and Response Quiz
Exam with this question: Cyber Threat Management: My Knowledge Check Answers
Please login or Register to submit your answer