CISM Incident Management Answer and Certified Practice Exam
Q) Which of the following is an example of a correction control?
a) Redirect incoming traffic to respond to a denial of service (DoS) attacks
b) Filtering network traffic to the internal network based on
c) Check the incoming network traffic for viruses
d) Log incoming network traffic
Q) In order to determine how the security breach occurred in the company’s network, pay attention to safety in the storage of different devices. Which of the following best Facilitates correlation and review of these magazines?
a) Database ~~ POS = TRUNC server ~~ POS = HEAD COMP
b) Domain Name Server (DNS)
c) time server
Q) The organization had a number of attacks on the network that everyone seems to have originated inside. The best approach is to:
a) It requires the use of strong passwords.
b) assign a static IP-address.
c) centralized logging software support.
d) installing an intrusion detection system (IDS).
Q) A serious vulnerability has been reported in the firewall software that is used by the organization. Which of the following factors should be immediate measures for information security management?
a) Make sure that all OS patches are updated
b) Block inbound traffic until a suitable solution is not found
c) Get advice from your firewall manufacturer
d) Order penetration test