312-50V11 · Question #368
Which of the following is a primary service of the U.S. Computer Security Incident Response Team (CSIRT)?
The correct answer is A. CSIRT provides an incident response service to enable a reliable and trusted single point of. CSIRT's primary service is providing a trusted, centralized incident response capability that serves as a single point of contact for reporting and coordinating security incidents.
Question
Which of the following is a primary service of the U.S. Computer Security Incident Response Team (CSIRT)?
Options
- ACSIRT provides an incident response service to enable a reliable and trusted single point of
- BCSIRT provides a computer security surveillance service to supply a government with important
- CCSIRT provides a penetration testing service to support exception reporting on incidents
- DCSIRT provides a vulnerability assessment service to assist law enforcement agencies with
How the community answered
(18 responses)- A89% (16)
- C6% (1)
- D6% (1)
Why each option
CSIRT's primary service is providing a trusted, centralized incident response capability that serves as a single point of contact for reporting and coordinating security incidents.
CSIRT exists to provide a reliable and trusted single point of contact for incident response, ensuring that security incidents are reported consistently, coordinated effectively, and handled by qualified personnel. This centralized model prevents fragmented responses and builds organizational trust in the incident handling process. It is the foundational service that all other CSIRT activities - analysis, coordination, and communication - are built around.
Government surveillance is not a CSIRT function; CSIRT focuses on incident response coordination, not intelligence collection or monitoring on behalf of government agencies.
Penetration testing is an offensive security assessment service and is not a primary or defining service of a CSIRT, which is reactive and response-focused.
While CSIRT may assist with vulnerability information, providing vulnerability assessments to support law enforcement is not its primary defined service.
Concept tested: CSIRT primary mission as incident response single point of contact
Source: https://www.cisa.gov/topics/cybersecurity-best-practices/organizations-and-cyber-safety/computer-security-incident-response-teams
Topics
Community Discussion
No community discussion yet for this question.