EMC NIST Cybersecurity Framework 2023 - D-CSF-SC-23 Exam Practice Test

What specifically addresses cyber-attacks against an organization's IT systems?
Correct Answer: C
The network security team in your company has discovered a threat that leaked partial data on a compromised file server that handles sensitive information. Containment must be initiated and addresses by the CSIRT. Service disruption is not a concern because this server is used only to store files and does not hold any critical workload.
Your company security policy required that all forensic information must be preserved.
Which actions should you take to stop data leakage and comply with requirements of the company security policy?
Correct Answer: C
What common process conducted by organizations when protecting digital assets is outside the scope of the NIST Cybersecurity Framework?
Correct Answer: C
A CISO is looking for a solution to lower costs, enhance overall efficiency, and improve the reliability of monitoring security related information.
Which ISCM feature is recommended?
Correct Answer: C
Rank order the relative severity of impact to an organization of each plan, where "1" signifies the most impact and "4" signifies the least impact.
Correct Answer:
What must be included in the CMDB?
Correct Answer: B
Your organization has tasked you with collecting information on all the data, personnel, devices, systems, and facilities that enable the organization to achieve its business purposes.
Which part of the NIST Cybersecurity Framework would you consult first?
Correct Answer: C
You have been tasked with documenting mission critical procedures of an organization that need to be sustained through a significant disruption.
What document would you develop?
Correct Answer: B
What entity offers a framework that is ideally suited to handle an organization's operational challenges?
Correct Answer: B
0
0
0
0