Organizations or incident response teams need to protect the evidence for any future legal actions that may be taken against perpetrators that intentionally attacked the computer system. EVIDENCE PROTECTION is also required to meet legal compliance issues. Which of the following documents helps in protecting evidence from physical or logical damage?
Answer(s): B
Except for some common roles, the roles in an IRT are distinct for every organization. Which among the following is the role played by the Incident Coordinator of an IRT?
The data on the affected system must be backed up so that it can be retrieved if it is damaged during incident response. The system backup can also be used for further investigations of the incident. Identify the stage of the incident response and handling process in which complete backup of the infected system is carried out?
Answer(s): A
In a qualitative risk analysis, risk is calculated in terms of:
Answer(s): C
Post your Comments and Discuss EC-Council 212-89 exam with other Community members:
Rohit commented on March 22, 2024 Pass the exam. I am officially certified now. Great questions. INDIA upvote
manisha commented on March 22, 2024 for exam practise INDIA upvote
Priscila commented on July 22, 2022 i find the xengine test engine simulator to be more fun than reading from pdf. GERMANY upvote
Fadil commented on August 08, 2023 It is very good Anonymous upvote
Priscila commented on July 22, 2022 I find the Xengine Test Engine Simulator to be more fun than reading from PDF. GERMANY upvote
Muhammed Hosain commented on May 31, 2021 I just pass my exam a 907 makr. Thank you team. INDIA upvote
Our website is free, but we have to fight against bots and content theft. We're sorry for the inconvenience caused by these security measures. You can access the rest of the 212-89 content, but please register or login to continue.