Is3110 Week5 Quiz

Week 5 Quiz

General Instructions:

1. This is a closed-book, closed-notes quiz. No reference material (including assignments and labs) will be permitted for use during the quiz session.
2. The quiz contains the following types of questions:
Short essay type
3. Place your answers in the space immediately following each question.

Quiz Questions
1. What is the purpose of a CIRT plan? Describe what this plan does and what other plan it ties into.

2. Describe what the three models are for a CIRT plan based on the NIST SP 800-61 template.

3. Define three of the responsibilities that an Incident Response Team would have. List them and describe the responsibilities.

4. As much as 80% of all incidents are a result of internal attacks. List four inappropriate usages from users.

5. List and explain three basic protection steps you can take to ensure all servers are hardened, thus reducing incidents.

6. Define a DRP and explain when it is invoked.

7. Describe two CSFs for a DRP.

8. Explain what Recovery Time Objective (RTO) is and why the DRP needs to be written to meet it.

9. Describe the advantages and disadvantages for each of the DRP location possibilities.

10. List and describe four of the costs associated with a DRP.

Student Answer Sheet

DATE: ____________________________
STUDENT NAME: ____________________________
COURSE NUMBER: ____________________________
INSTRUCTOR: ____________________________
SCHOOL LOCATION: ____________________________

General Instructions:

Answer each question in the space provided below