D-CSF-SC-23 by EMC Valid Free Exam Practice Test

Question 1

The information security manager for a major web based retailer has determined that the product catalog database is corrupt. The business can still accept orders online but the products cannot be updated. Expected downtime to rebuild is roughly four hours.
What type of asset should the product catalog database be categorized as?

A. Business critical B. Safety critical C. Non-critical D. Mission critical

Correct Answer: C

Question 2

Which type of risk has the potential for the largest monetary impact to an organization?

A. Litigation B. Operational C. Criminal D. Governance

Correct Answer: A

Question 3

Which NIST Cybersecurity Framework component defines activities and references for a specific cybersecurity approach?

A. Category B. Tiers C. Core D. Profile

Correct Answer: D

Question 4

An incident has occurred. You restore backups onto mission/business critical assets. After restoration of the backups your services are still inaccessible on numerous assets.
What could be the cause of the issue?

A. Incorrect backup strategy B. Hardware failure C. Unverified backups D. Network failure

Correct Answer: C

Question 5

What is a valid order of steps from the Incident Response Lifecycle?

A. Preparation
Eradication
Containment
Analysis
Recovery B. Containment
Analysis
Detection
Eradication
Communication C. Containment
Detection
Analysis
Eradication
Prevention D. Preparation
Detection
Containment
Eradication
Recovery

Correct Answer: D

Question 6

What specifically addresses cyber-attacks against an organization's IT systems?

A. Continuity of Support Plan B. Continuity of Operations Plan C. Business Continuity Plan D. Incident Response Plan

Correct Answer: D

EMC NIST Cybersecurity Framework 2023 - D-CSF-SC-23 Exam Practice Test