212-89 Free Practice Test

An organization faced an information security incident where a disgruntled employee passed sensitive access control information to a competitor. The organization’s incident response manager, upon investigation, found that the incident must be handled within a few hours on the same day to maintain business continuity and market competitiveness. How would you categorize such information security incident?

1. A. High level incident
2. B. Middle level incident
3. C. Ultra-High level incident
4. D. Low level incident

Correct Answer: A

An incident is analyzed for its nature, intensity and its effects on the network and systems. Which stage of the incident response and handling process involves auditing the system and network log files?

1. A. Incident recording
2. B. Reporting
3. C. Containment
4. D. Identification

Correct Answer: D

Incident response team must adhere to the following:

1. A. Stay calm and document everything
2. B. Assess the situation
3. C. Notify appropriate personnel
4. D. All the above

Correct Answer: D

Which of the following can be considered synonymous:

1. A. Hazard and Threat
2. B. Threat and Threat Agent
3. C. Precaution and countermeasure
4. D. Vulnerability and Danger

Correct Answer: A

The free, open source, TCP/IP protocol analyzer, sniffer and packet capturing utility standard across many industries and educational institutions is known as:

1. A. Snort
2. B. Wireshark
3. C. Cain & Able
4. D. nmap

Correct Answer: B