Fill in the blank: During the _____ phase, security teams may conduct a full-scale analysis to determine the root cause of an incident and use what they learn to improve the company’s overall security posture.1 pointeradication and recoverydetection and analysispost-incident activitycontainment

Fill in the blank: During the _____ phase, security professionals use tools and strategies to determine whether a breach has occurred and to evaluate its potential magnitude.1 pointcontainmentcoordinationdetection and analysispreparation

Fill in the blank: Once a security incident is resolved, security analysts perform various post-incident activities and _____ efforts with the security team. 1 pointcoordinationeradicationpreparationdetection

A security breach has happened at a major corporation. The incident team has responded and executed their incident response plan. During which phase are lessons learned applied?Select one:analyzecontainmentrecoverypreparationpost-incidentdetection

Which phase of an incident response playbook is primarily concerned with preventing further damage and reducing the immediate impact of a security incident?1 pointDetection and analysisPost-incident activityContainmentPreparation

Question 7A security analyst wants to set the foundation for successful incident response. They outline roles and responsibilities of each security team member. What phase of an incident response playbook does this scenario describe? 1 pointPreparationContainmentDetection and analysisPost-incident activit