D-CSF-SC-23試験無料問題集（112題）「EMC NIST Cybersecurity Framework 2023 認定」

出題：1

Which mechanism within the NIST Cybersecurity Framework describes a method to capture the current state and define the target state for understanding gaps, exposure, and prioritize changes to mitigate risk?

A. Categories

B. Tiers

C. Profiles

D. Functions

正解：B 解答を投票する

出題：2

What categories are specifically contained within the Identify function?

A. Communications
Supply Chain Management
Business Environment

B. Business Environment
Asset Management
Anomalies and Events

C. Supply Chain Risk
Data Security
Response Planning

D. Asset Management
Governance
Risk Assessment

正解：D 解答を投票する

出題：3

What could be considered a set of cybersecurity activities, desired outcomes, and applicable references that are common across critical infrastructure sectors and align to five concurrent and continuous functions?

A. Governance

B. Baseline

C. Core

D. Profile

正解：C 解答を投票する

出題：4

An incident has occurred. You restore backups onto mission/business critical assets. After restoration of the backups your services are still inaccessible on numerous assets.
What could be the cause of the issue?

A. Network failure

B. Hardware failure

C. Unverified backups

D. Incorrect backup strategy

正解：C 解答を投票する

出題：5

Your organization was breached. You informed the CSIRT and they contained the breach and eradicated the threat.
What is the next step required to ensure that you have an effective CSRL and a more robust cybersecurity posture in the future?

A. Conduct a gap analysis

B. Update the BIA

C. Determine change agent

D. Update the BCP

正解：B 解答を投票する

出題：6

What constitutes the main objectives of the Recovery function?

A. Restore assets, workloads, and services

B. Restore backups, analyze threats, and monitor backup integrity

C. Restore workloads, assets, and audit logs

D. Restore services, mitigate risks, and improve

正解：A 解答を投票する

出題：7

What is concerned with availability, reliability, and recoverability of business processes and functions?

A. Disaster Recovery Plan

B. Recovery Strategy

C. Business Impact Analysis

D. Business Continuity Plan

正解：D 解答を投票する

出題：8

What is a recommended usage of the Detect function?

A. Eliminate risks among systems

B. Remain confidential to IT management

C. Implement following the Protect Function

D. Communicate to appropriate levels

正解：D 解答を投票する

出題：9

What are the five categories that make up the Response function?

A. Response Planning, Communications, Analysis, Mitigation, and Improvements

B. Mitigation, Improvements, Maintenance, Response Planning, and Governance

C. Response Planning, Data Security, Communications, Analysis, and Mitigation

D. Awareness and Training, Improvements, Communications, Analysis, and Governance

正解：A 解答を投票する

出題：10

The Disaster Recovery Plan must document what effort in order to address unrecoverable assets?

A. Recovery resources

B. RTO savings

C. Recovery resources

D. Recovery priority

正解：D 解答を投票する

D-CSF-SC-23試験無料問題集「EMC NIST Cybersecurity Framework 2023 認定」