Which of the following best describes the post-incident activity phase of the NIST incident response process?
A) Follows a predefined process while documenting each step the analyst takes
B) Includes deploying the necessary tools and resources to successfully investigate and resolve cybersecurity incidents
C) Includes how to use collected incident data and evidence retention
D) Includes choosing a containment strategy to effectively contain and eradicate the attack, as well as to successfully recover from it
C) Includes how to use collected incident data and evidence retention
You might also like to view...
Write a function that prints every other letter in a string.
Note: If the answer assumes that the string only contains letters, an answer might look like the below.
What is the major difference between a linked file and an attachment?p.000
What will be an ideal response?
____________________ is the reflective feedback of a transmitted signal as the signal moves through a medium.?
Fill in the blank(s) with the appropriate word(s).
The color mode of an image determines the number of color information channels.
Answer the following statement true (T) or false (F)