Computer Lab for Rent
Meeting Room Rental
Training Facility Rental
Exam Testing Center
Purchase Exam Vouchers
Custom Course Development
Who We Are
Work With Us
Incident Handling for Managers Quiz
Incident Handling for Managers
Step 1 of 11
When overseeing forensic evidence handling, the incident response team manager is responsible for:
Collecting hard drives, external storage devices, and other pieces of evidence for documentation
Ensuring each person handling evidence logs onto an evidence log to document activities
None of the above
Reviewing log files
Which policy pertains to staff following specific authorization steps to ensure system security when accessing company systems on personal computers?
Company Telecommuting Policy
Website Content Policy
File Sharing and File Transfer Policy
Bring Your Own Device (BYOD) Policy
Remote System Access Policy
What corporate security policy describes the communication to who and when dealing with responding to incidents?
(IRP) does a team member assign ownership of an incident or potential incident to an incident handler?
Which corporate security activity and procedure is essential?
Perform security reviews of all custom coding
Install, update and run antivirus software on servers
All of the above
Update all software with security patches
Schedule and perform system backups on a monthly basis
Which of the eleven articles of The Federal Rules of Evidence (FRE) does Rule 43 (stated below) support?
Contents of Writings, Recordings and Photographs
Relevancy and Its Limits
Opinions and Expert Testimony
On an Incident Response team, the Forensics Examiner's role is to?
Draw conclusions on evidence gathered, report directly to the team manager, and act as a Subject Matter Expert (SME) capable of filling the role as an expert witness in the court of law.
Capture and collect digital evidence required for analyzing, documenting, and reporting the incident.
None of the above
Examine captured evidence at the scene of the incident/crime and document all relevant details of evidence for analysis and final reports.
Which is not an incident classification level?
Denial of Service
What is Inculpatory evidence when performing system forensics of an incident?
Verifies existing data
Contradicts existing data
What operating system should your team not use when performing forensics analysis?