D-CSF-SC-23無料問題集「EMC NIST Cybersecurity Framework 2023」

質問 1

Your organization has tasked you with collecting information on all the data, personnel, devices, systems, and facilities that enable the organization to achieve its business purposes.
Which part of the NIST Cybersecurity Framework would you consult first?

（A）ID.AM

（B）PR.AC

（C）ID.SC

（D）DE.DP

正解：A 解答を投票する

質問 2

What is a recommended usage of the Detect function?

（A）Remain confidential to IT management

（B）Eliminate risks among systems

（C）Implement following the Protect Function

（D）Communicate to appropriate levels

正解：D 解答を投票する

質問 3

Which document identifies cash flow losses, cost of equipment replacement, salaries paid for backlog, and financial loss linked to failures?

（A）Risk Assessment Strategy

（B）Business Continuity Plan

（C）Disaster Recovery Plan

（D）Business Impact Analysis

正解：D 解答を投票する

質問 4

When should event analysis be performed?

（A）Only at the discretion of an authorized security analyst

（B）Only when requested by an auditor

（C）Routinely for all events collected on a mission critical system

（D）After an event is triggered by the detection system

正解：C 解答を投票する

質問 5

What determines the technical controls used to restrict access to USB devices and help prevent their use within a company?

（A）Detect use of the USB devices and report users

（B）Written security policy prohibiting the use of the USB devices

（C）Acceptable use policy in the employee HR on-boarding training

（D）Block use of the USB devices for all employees

正解：B 解答を投票する

質問 6

A continuously updated CMDB is an output of which NIST function and category?

（A）ID.AM

（B）ID.RM

（C）ID.BE

（D）ID.SC

正解：A 解答を投票する

質問 7

What database is used to record and manage assets?

（A）Asset Inventory Management Database

（B）Configuration Management Database

（C）Patch Management Inventory Database

（D）High Availability Mirrored Database

正解：B 解答を投票する

質問 8

Refer to the exhibit.

What type of item appears in the second column of the table?

（A）Function

（B）Tier

（C）Subcategory

（D）Informative Reference

正解：C 解答を投票する

質問 9

What contains a predefined set of efforts that describes an organization's mission/business critical processes, and defines how they will be sustained during and after a significant disruption?

（A）Risk Assessment Strategy

（B）Business Continuity Plan

（C）Disaster Recovery Plan

（D）Business Impact Analysis

正解：B 解答を投票する

質問 10

What is the purpose of the Asset Management category?

（A）Avoid breaches of any criminal or civil law, statutory, regulatory, or contractual obligations

（B）Inventory physical devices and systems, software platform and applications, and communication flows

（C）Prevent unauthorized access, damage, and interference to business premises and information

（D）Support asset management strategy and information infrastructure security policies

正解：B 解答を投票する

D-CSF-SC-23 無料問題集「EMC NIST Cybersecurity Framework 2023」

弊社を連絡する

関連リンク

トップ試験