FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 11: Contingency Planning and Networking Incident Response

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 21

Essay

Review LaterAdd Note

Review Later

Describe the two criteria that may cause a disaster occurrence.

Correct Answer

verified

In general, a disaster has occurred when...

View Answer

Show Answer

Question 22

Short Answer

Review LaterAdd Note

Review Later

Match each item with a statement below. a.RAID Level 0 f.RAID Level 5 b.RAID Level 1 g.RAID Level 6 c.RAID Level 2 h.RAID Level 7 d.RAID Level 3 i.RAID Level 10 e.RAID Level 4 -Uses byte-level striping of data

Correct Answer

verified

Show Answer

Question 23

Multiple Choice

Review LaterAdd Note

A(n) ____ is a detailed description of the activities that occur during an attack, including the preliminary indications of the attack as well as the actions taken and the outcome.

Which backup method allows for easy full-system restorations (no shuffling through tapes with partial backups on them) ?

The identification of an incident begins with the ____________________ - that is, the circumstances that cause the IR team to be activated and the IR plan to be initiated.

Incident response focuses on immediate response to small-scale events.

Compare the protect and forget strategy with the apprehend and prosecute strategy.

Which team is responsible for conducting the BIA?

The ____ review entails a detailed examination of the events that occurred from first detection to final recovery.

Match each item with a statement below. a.RAID Level 0 f.RAID Level 5 b.RAID Level 1 g.RAID Level 6 c.RAID Level 2 h.RAID Level 7 d.RAID Level 3 i.RAID Level 10 e.RAID Level 4 -A proprietary variation on RAID 5 in which the array works as a single virtual drive

Describe the three forms of cloud computing.

NAS works well with real-time applications because of the latency of the communication methods.

According to D. L. Pipkin, ____ is a definite indicator of an actual incident.

____ clustering is a more complex model in which all members of a cluster simultaneously provide application services.

Match each item with a statement below. a.RAID Level 0 f.RAID Level 5 b.RAID Level 1 g.RAID Level 6 c.RAID Level 2 h.RAID Level 7 d.RAID Level 3 i.RAID Level 10 e.RAID Level 4 -A specialized form of disk striping with parity; is not widely used

Incident ____ is the process of evaluating organizational events, determining which events are possible incidents, also called incident candidates, and then determining whether or not the incident candidate is an actual incident or a nonevent, also called a false positive incident candidate.

List the four integrated contingency planning (CP) components.

In some organizations, which two plans are considered to be one plan, known as the Business Resumption Plan?

____ planning ensures that critical business functions can continue if a disaster occurs.

____________________ are the contractual documents guaranteeing certain minimum levels of service provided by vendors.