Which action is taken in the postincident phase of the NIST incident response life cycle?

IT Questions BankCategory: CCNA CyberOpsWhich action is taken in the postincident phase of the NIST incident response life cycle?

Which action is taken in the postincident phase of the NIST incident response life cycle?

  • Document the handling of the incident.
  • identify and validate incidents.
  • Conduct CSIRT response training.
  • Implement procedures to contain threats.

Explanation: It is in the post-incident phase of the NIST incident response life cycle phase that the CSIRT documents how incidents are handled. Recommended changes for future response are also made to avoid reoccurrences.

Exam with this question: CCNA Cyber Ops Chapter 13 Exam Answers

Subscribe
Notify of
guest

0 Comments
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x