D-CSF-SC-01 Exam Questions

Match each Recover Function component with its primary activity. Component Disaster Recovery Business Continuity Data Restoration Impact Analysis Primary Activity

What is the primary focus of the BIA?

What are the five categories that make up the Response function?

In the NIST Cybersecurity Framework, the "Tiers" component is used to assess which of the following?

What contains a predefined set of efforts that describes an organization's mission/business critical processes, and defines how they will be sustained during and after a significan...

What entity offers a framework that is ideally suited to handle an organization's operational challenges?

Which of the following best describes the purpose of the Detect Function within the NIST Cybersecurity Framework?

What type of controls are crucial within the Identify Function for inventory classification?

Your organization has been breached. The attacker has sent an email demanding $100,000 in cryptocurrency in exchange for not dumping all your customer information onto the dark web...

A new employee is starting work at your company. When should they be informed of the company's security policy?

What activity informs situational awareness of the security status of an organization's systems?

What are the main components of the NIST Cybersecurity Framework?

Which tools can support the Detect Function's goal of identifying cybersecurity events? (Select two)

Which activity is crucial in the Respond Function to ensure proper documentation of the steps taken during a cybersecurity incident?

When implementing the NIST Cybersecurity Framework, what is the first step in the implementation process?

What is a consideration when developing a Disaster Recovery Plan?

What contains a predefined set of instructions or processes that describes the management policy, procedures, and written plan defining recovery of information systems?

What is an accurate statement concerning the Cyber Resilient Lifecycle (CRLC) and the Cybersecurity Framework (CSF)?

What is part of the Pre-Recovery phase?

A company is conducting awareness training for all employees to recognize phishing attacks. This activity aligns with which part of the Protect Function?

When evaluating a cybersecurity framework, COBIT 2019 emphasizes ___ as a key design factor for tailoring the framework to the organization.

What is a recommended usage of the Detect function?

The ___ function in the NIST Cybersecurity Framework is responsible for identifying vulnerabilities and threats that may affect the organization.

An organization's security team is analyzing logs from its Security Information and Event Management (SIEM) system to identify unusual patterns. Which subcategory of the Detect Fun...

The Backup Recovery Plan is dependent on what effort?

The CSF recommends that the Communication Plan for an IRP include audience, method of communication, frequency, and what other element?

The __________ component of the Respond Function involves ensuring that all affected parties, both internal and external, receive timely updates during an incident.

What database is used to record and manage assets?

A retail company experiences a data breach affecting customer records. The Incident Response Plan calls for immediate containment and communication with affected customers. Which R...

Which category addresses the detection of unauthorized code in software?

You have been tasked with documenting mission critical procedures of an organization that need to be sustained through a significant disruption. What document would you develop?

Match each Respond Function component with its primary purpose. Component Containment Communications Plan Incident Analysis After-Action Review Purpose

When conducting a risk assessment as part of the NIST Cybersecurity Framework, which of the following elements is critical for identifying risks?

Which of the following is NOT one of the five core functions of the NIST Cybersecurity Framework?

What activity is supported by the Protect function in the NIST Cybersecurity Framework Core?

Which of the following is essential for ensuring "timely recovery to normal operations" as defined in the Recover Function?

What determines the technical controls used to restrict access to USB devices and help prevent their use within a company?

Which NIST Cybersecurity Framework tier describes an organization that adapts its cybersecurity practices based on evolving threats?

Your organization was breached. You informed the CSIRT and they contained the breach and eradicated the threat. What is the next step required to ensure that you have an effective...

The NIST Cybersecurity Framework is structured around which main elements? (Select two)

Within the Protect Function, what is the purpose of implementing access control subcategory controls?

What is the purpose of a baseline assessment?

Your data center uses a diesel generator as backup for two different power grids provided by your regional power company. During a period of unprecedented heat, you experience brow...

When should event analysis be performed?

What is a consideration when performing data collection in Information Security Continuous Monitoring?

In COBIT 2019, the design of a cybersecurity framework requires ___ to ensure that organizational objectives align with cybersecurity outcomes.

What procedure is designed to enable security personnel to detect, analyze, contain, eradicate, respond, and recover from malicious computer incidents such as unauthorized changes...

In the context of the Recover Function, which of the following are critical for achieving business resiliency? (Select two)

After a cybersecurity incident, which Respond Function activity focuses on assessing what went well and what could be improved?

A security audit of the systems on a network must be performed to determine their compliance with security policies. Which control should be used for the audit?