212-89 EC-Council Exam Questions and Free Practice Test

Question 13

Incident may be reported using/ by:

A. Phone call

B. Facsimile (Fax)

C. Email or on-line Web form

D. All the above

Correct Answer:D

Question 14

Insiders may be:

A. Ignorant employees

B. Carless administrators

C. Disgruntled staff members

D. All the above

Correct Answer:D

Question 15

The ability of an agency to continue to function even after a disastrous event, accomplished through the deployment of redundant hardware and software, the use of fault tolerant systems, as well as a solid backup and recovery strategy is known as:

A. Business Continuity Plan

B. Business Continuity

C. Disaster Planning

D. Contingency Planning

Correct Answer:B

Question 16

In which of the steps of NIST’s risk assessment methodology are the boundary of the IT system, along with the resources and the information that constitute the system identified?

A. Likelihood Determination

B. Control recommendation

C. System characterization

D. Control analysis

Correct Answer:C

Question 17

A methodical series of techniques and procedures for gathering evidence, from computing equipment and various storage devices and digital media, that can be presented in a court of law in a coherent and meaningful format is called:

A. Forensic Analysis

B. Computer Forensics

C. Forensic Readiness

D. Steganalysis

Correct Answer:B

Question 18

Which of the following may be considered as insider threat(s):

A. An employee having no clashes with supervisors and coworkers

B. Disgruntled system administrators

C. An employee who gets an annual 7% salary raise

D. An employee with an insignificant technical literacy and business process knowledge

Correct Answer:B

START 212-89 EXAM