D-CSF-SC-01 Exam Questions

The Cybersecurity Framework uses profiles to align cybersecurity activities with:

The purpose of an __________ is to evaluate the effectiveness of the response actions and identify areas for improvement after an incident.

What determines the approach taken to communicate to customers, press, investors, and regulators regarding a breach?

The CSIRT discovers that an attacker changed some non-encrypted values on a database, causing an e-commerce application to show incorrect prices. Which part(s) of the CIA Triad was...

The ___ function within the framework emphasizes the identification of cybersecurity events in a timely manner.

A manufacturing company is implementing a Disaster Recovery Plan (DRP) that includes alternate data center sites in case of a primary site failure. This aligns with which aspect of...

The ___ function of the NIST Cybersecurity Framework is responsible for restoring any services or capabilities impacted by a cybersecurity event.

What could be considered a set of cybersecurity activities, desired outcomes, and applicable references that are common across critical infrastructure sectors and align to five con...

A CISO is looking for a solution to lower costs, enhance overall efficiency, and improve the reliability of monitoring security related information. Which ISCM feature is recommend...

The main goal of the Recover Function in the NIST Framework is to:

Which NIST Cybersecurity Framework component defines activities and references for a specific cybersecurity approach?

Refer to the exhibit. Your organization's security team has been working with various business units to understand their business requirements, risk tolerance, and resources used t...

Concerning a risk management strategy, what should the executive level be responsible for communicating?

What is the effect of changing the Baseline defined in the NIST Cybersecurity Framework?

A company implemented an intrusion detection system. They notice the system generates a very large number of false alarms. What steps should the company take to rectify this situat...

Refer to the exhibit. What type of item appears in the second column of the table?

A ___________ provides an organization with a detailed understanding of its assets, guiding the configuration of protective technologies within the Protect Function.

Assume that a DDoS attack has been occurring for 72 minutes. What determines who talks to external stakeholders?

Which phase in the SDLC is most concerned with maintaining proper authentication of users and processes to ensure an appropriate access control policy is defined?

Which component of the NIST Cybersecurity Framework serves as a reference to identify specific cybersecurity activities that organizations can undertake to achieve their cybersecur...

In the context of the Respond Function, which actions are taken to contain a security incident? (Select two)

___________ is a critical component of the Detect Function, focusing on observing network traffic in real-time to identify potential security incidents.

Continuous monitoring is crucial in the Detect Function because it:

A healthcare organization's Incident Response Plan includes steps to notify relevant regulatory bodies within 72 hours of a security breach. Which subcategory of the Respond Functi...

The ___ function in the NIST Cybersecurity Framework is primarily focused on maintaining resilience after cybersecurity events.

COBIT 2019 emphasizes the need for ___ to ensure that cybersecurity efforts align with enterprise governance goals.

You have been asked by your organization to: - Assist in developing an organizational understanding for managing cybersecurity risk to systems, people, assets, data, and capabiliti...