Free Access EC-COUNCIL.212-89.v2022-01-31.q80 Practice Test (Page 12)

Question 51

Incident management team provides support to all users in the organization that are affected by the threat or
attack. The organization's internal auditor is part of the incident response team. Identify one of the
responsibilities of the internal auditor as part of the incident response team:

A.Configure information security controls

B.Identify and report security loopholes to the management for necessary actions

C.Perform necessary action to block the network traffic from suspected intruder

D.Coordinate incident containment activities with the information security officer

Question 52

Business continuity is defined as the ability of an organization to continue to function even after a disastrous
event, accomplished through the deployment of redundant hardware and software, the use of fault tolerant
systems, as well as a solid backup and recovery strategy. Identify the plan which is mandatory part of a
business continuity plan?

A.Business Recovery Plan

B.New business strategy plan

C.Forensics Procedure Plan

D.Sales and Marketing plan

Question 53

A computer forensic investigator must perform a proper investigation to protect digital evidence. During the investigation, an investigator needs to process large amounts of data using a combination of automated and manual methods. Identify the computer forensic process involved:

A.Examination

B.Preparation

C.Collection

D.Analysis

Question 54

A security policy will take the form of a document or a collection of documents, depending on the situation or
usage. It can become a point of reference in case a violation occurs that results in dismissal or other penalty.
Which of the following is NOT true for a good security policy?

A.It must be enforceable with security tools where appropriate and with sanctions where actual prevention is
not technically feasible

B.It must be approved by court of law after verifications of the stated terms and facts

C.It must clearly define the areas of responsibilities of the users, administrators and management

D.It must be implemented through system administration procedures, publishing of acceptable use guide lines
or other appropriate methods

Question 55

Incident prioritization must be based on:

A.All the above

B.Criticality of affected systems

C.Potential impact

D.Current damage

Other Version: 4297EC-COUNCIL.212-89.v2025-07-10.q180; 6351EC-COUNCIL.212-89.v2024-10-25.q169; 2943EC-COUNCIL.212-89.v2024-04-20.q127; 1994EC-COUNCIL.212-89.v2022-12-15.q119; 1647EC-COUNCIL.212-89.v2022-06-28.q74; 88EC-COUNCIL.Pass4surecert.212-89.v2021-09-13.by.hamiltion.74q.pdf

Latest Upload: 277PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 389Nokia.4A0-113.v2026-05-01.q69; 423EC-COUNCIL.312-49v11.v2026-04-30.q214; 341Microsoft.MB-820.v2026-04-30.q101; 262Salesforce.MC-202.v2026-04-30.q57; 306BICSI.INSTC_V8.v2026-04-29.q53; 433NMLS.MLO.v2026-04-28.q82; 292NCARB.Project-Management.v2026-04-28.q27; 522EMC.D-AV-DY-23.v2026-04-27.q184; 1359ServiceNow.CSA.v2026-04-27.q483

Question 51

Question 52

Question 53

Question 54

Question 55

Download PDF File