Systems Security Certified Practitioner (SSCP) — Question 48

Another example of Computer Incident Response Team (CIRT) activities is:

Answer options

• A. Management of the netware logs, including collection, retention, review, and analysis of data
• B. Management of the network logs, including collection and analysis of data
• C. Management of the network logs, including review and analysis of data
• D. Management of the network logs, including collection, retention, review, and analysis of data

Correct answer: D

Explanation

The correct answer is D because it encompasses all aspects of log management, including collection, retention, review, and analysis, which are essential for effective incident response. Options A, B, and C are incomplete as they do not include all necessary components like retention or review for proper log management.