Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 212-89 All Questions

View all questions & answers for the 212-89 exam
Go to Exam

Exam 212-89 topic 1 question 30 discussion

Actual exam question from ECCouncil's 212-89
Question #: 30
Topic #: 1
[All 212-89 Questions]

One of the main objectives of incident management is to prevent incidents and attacks by tightening the physical security of the system or infrastructure. According to CERT's incident management process, which stage focuses on implementing infrastructure improvements resulting from postmortem reviews or other process improvement mechanisms?

  • A. Protection
  • B. Preparation
  • C. Detection
  • D. Triage
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Cherryyyy at June 10, 2023, 2:11 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
jacklin
5 days, 19 hours ago
I noticed something interesting about this question. The CERT incident management process actually consists of four standard phases: Preparation Detection & Analysis Containment, Eradication & Recovery Post-Incident Activity/Lessons Learned Protection isn't a standard phase in this process. Infrastructure improvements typically come from the Lessons Learned phase and then get implemented during the next Preparation cycle. Since Lessons Learned isn't an option here, we might consider either: Preparation (as it's where improvements get implemented) or ask for clarification since the question includes a non-standard phase Would be interested to hear others' thoughts on this.
upvoted 1 times
...
Calculusx
2 months, 3 weeks ago
Lessons learnt which unfortunately is not listed among the options. In that case I will go for B as part of post-mortem improvement
upvoted 1 times
...
messo
1 year, 1 month ago
there is no Protection step in the process
upvoted 1 times
...
Cherryyyy
1 year, 5 months ago
Is it A or B? After the incident for improvement doesnt you need prepare for likely risks especially with what you learned from last incident?
upvoted 1 times
LilBuns
1 year, 2 months ago
focuses on implementing infrastructure improvements- so it is not in preparation anymore. I guess its A
upvoted 1 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel