Free EMC DES-9131 Practice Exam with Questions & Answers

What are the four tiers of integration within the NIST Cybersecurity Framework?

You need to review your current security baseline policy for your company and determine which security

controls need to be applied to the baseline and what changes have occurred since the last update.

Which category addresses this need?

What is considered outside the scope of a BIA?

What supports an organization in making risk management decisions to address their security posture in real time?

A continuously updated CMDB is an output of which NIST function and category?

When should event analysis be performed?

An organization has a policy to respond “ASAP” to security incidents. The security team is having a difficult time prioritizing events because they are responding to all of them, in order of receipt.

Which part of the IRP does the team need to implement or update?

An incident has occurred. You restore backups onto mission/business critical assets. After restoration of the

backups your services are still inaccessible on numerous assets.

What could be the cause of the issue?

In accordance with PR.MA, an organization has just truncated all log files that are more than 12 months old.

This has freed up 25 TB per logging server.

What must be updated once the truncation is verified?

What contains a predefined set of instructions or processes that describes the management policy,

procedures, and written plan defining recovery of information systems?