CompTIA CASP+ (CAS-003) — Question 32
A company is acquiring incident response and forensic assistance from a managed security service provider in the event of a data breach. The company has selected a partner and must now provide required documents to be reviewed and evaluated. Which of the following documents would BEST protect the company and ensure timely assistance? (Choose two.)
Answer options
- A. RA
- B. BIA
- C. NDA
- D. RFI
- E. RFQ
- F. MSA
Correct answer: C, F
Explanation
The NDA (Non-Disclosure Agreement) ensures that sensitive information shared with the service provider remains confidential, which is crucial during a data breach. The MSA (Master Service Agreement) outlines the terms of service and responsibilities, providing a clear framework for timely assistance, making both C and F the best choices. The other options, while relevant in certain contexts, do not specifically address the immediate need for protection and assistance in the event of a data breach.