CS0-003 Exam Question 11
Following an attack, an analyst needs to provide a summary of the event to the Chief Information Security Officer. The summary needs to include the who-what-when information and evaluate the effectiveness of the plans in place. Which of the following incident management life cycle processes does this describe?
CS0-003 Exam Question 12
A security analyst performs a vulnerability scan. Based on the metrics from the scan results, the analyst must prioritize which hosts to patch. The analyst runs the tool and receives the following output:

Which of the following hosts should be patched first, based on the metrics?

Which of the following hosts should be patched first, based on the metrics?
CS0-003 Exam Question 13
Which of the following should be updated after a lessons-learned review?
CS0-003 Exam Question 14
Which of the following is the appropriate phase in the incident response process to perform a vulnerability scan to determine the effectiveness of corrective actions?
CS0-003 Exam Question 15
A security analyst needs to prioritize vulnerabilities for patching. Given the following vulnerability and system information:

Which of the following systems should the analyst patch first?

Which of the following systems should the analyst patch first?
