EXIN Foundation in IT Service Management based on ISO/IEC 20000 — Question 15
An information security incident has several stages which together are known as the incident cycle. At different stages within this cycle different kinds of security measures are applied.
At which stage of the incident cycle is the Intrusion detection system (IDS) measure aimed?
Answer options
- A. At the stage Threat
- B. Between the stages Threat and Incident
- C. At the stage Incident
- D. Between the stages Incident and Damage
Correct answer: C
Explanation
The Intrusion Detection System (IDS) is specifically designed to monitor and respond to security events during the Incident stage of the incident cycle. Options A and B do not accurately reflect the purpose of the IDS, as they relate to earlier detection of threats rather than response during an incident. Option D is incorrect because it suggests a focus on damage control rather than active incident management.