Bird
0
0

Which of the following is the correct order of steps in incident response related to eradication and recovery?

easy📝 Factual Q12 of 15
Cybersecurity - Incident Response
Which of the following is the correct order of steps in incident response related to eradication and recovery?
AEradication first, then recovery
BNeither eradication nor recovery is needed
CRecovery and eradication happen simultaneously
DRecovery first, then eradication
Step-by-Step Solution
Solution:

  1. Step 1: Recall incident response sequence

    After detecting an incident, the threat must be removed before restoring systems.

  2. Step 2: Confirm eradication precedes recovery

    Eradication removes threats; recovery restores normal operations afterward.

  3. Final Answer:

    Eradication first, then recovery -> Option A

  4. Quick Check:

    Order = Eradication then Recovery [OK]
Quick Trick: Remove threats before restoring systems to avoid reinfection [OK]
Common Mistakes:
MISTAKES
  • Thinking recovery happens before threat removal
  • Believing both steps occur at the same time
  • Ignoring the need for eradication

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More Cybersecurity Quizzes
Advanced Threat Protection - Sandbox environments - Quiz 14medium Advanced Threat Protection - Sandbox environments - Quiz 5medium Compliance and Governance - GDPR requirements - Quiz 1easy Compliance and Governance - Security policy development - Quiz 5medium Digital Forensics - Mobile device forensics - Quiz 7medium Emerging Security Topics - Quantum computing threats to cryptography - Quiz 14medium Incident Response - Communication during incidents - Quiz 14medium Security Architecture and Design - Security design patterns - Quiz 12easy Security Architecture and Design - Secure SDLC practices - Quiz 5medium Security Architecture and Design - Why secure design prevents vulnerabilities - Quiz 14medium