nerdexam
Cisco

210-255 · Question #102

Which of the following are examples of some of the responsibility of a corporate CSIRT and the policies it helps create? (Choose four)

The correct answer is B. incident classification and handling C. Information classification and protection D. Information dissemination E. Record retentions and destruction. This question identifies core CSIRT responsibilities and the policies it helps create, excluding activities outside its authorized internal scope. Scanning a vendor's customer network is not a CSIRT function.

Security Policies and Procedures

Question

Which of the following are examples of some of the responsibility of a corporate CSIRT and the policies it helps create? (Choose four)

Options

  • AScanning vendor customer network
  • Bincident classification and handling
  • CInformation classification and protection
  • DInformation dissemination
  • ERecord retentions and destruction

How the community answered

(33 responses)
  • A
    6% (2)
  • B
    94% (31)

Why each option

This question identifies core CSIRT responsibilities and the policies it helps create, excluding activities outside its authorized internal scope. Scanning a vendor's customer network is not a CSIRT function.

AScanning vendor customer network

Scanning a vendor's customer network is outside the CSIRT's authority and scope - CSIRTs operate within their own organization's boundaries and lack authorization to probe third-party networks.

Bincident classification and handlingCorrect

Incident classification and handling is a primary CSIRT responsibility, involving categorizing severity, coordinating response, and managing the full lifecycle of security incidents.

CInformation classification and protectionCorrect

Information classification and protection is a CSIRT-supported policy area, ensuring sensitive data is labeled and safeguarded appropriately during and after incidents.

DInformation disseminationCorrect

Information dissemination involves communicating threat intelligence and incident details to appropriate internal and external stakeholders, a key CSIRT coordination duty.

ERecord retentions and destructionCorrect

Record retention and destruction policies fall under CSIRT governance, ensuring that evidence and logs are preserved or securely destroyed per legal and regulatory requirements.

Concept tested: CSIRT roles and organizational policy responsibilities

Source: https://www.first.org/education/trainings

Topics

#CSIRT responsibilities#incident classification#information protection#data retention

Community Discussion

No community discussion yet for this question.

Full 210-255 Practice