FITSP-A Module 10 rated A+ already passed 2023

FITSP-A Module 10 rated A+ already passed 20231. What is defined as a simulation of an emergency designed to validate the viability of one or more aspects of an ISCP? a) ISCP Test b) ISCP Exercise c) ISCP Training d) ISCP Drill - correct answer Correct answer: b) ISCP Exercise NIST SP 800-34rl, Paragraph 3.5.3 states: "An exercise is a simulation of an emergency designed to validate the viability of one or more aspects of an ISCP." Incorrect answers: a) ISCP Testing takes many forms, but is not necessarily scenario-based; c) ISCP Training is focused on preparing personnel to participate in tests and exercises; d) ISCP Drill is a term not generally used. 2. What is the US-CERT incident category name and reporting timeframe for a CAT-3 incident? a) Denial of Service/2 hours b) Malicious Code/Daily c) Unauthorized Scan/Monthly d) Inappropriate Usage/Daily - correct answer Correct answer: b) Malicious Code/Daily The Federal Incident Reporting Guidelines on the US-CERT web site Federal Agencies Incident Categories table includes: "CAT 3: Malicious Code - Successful installation of malicious software (e.g., virus, worm, Trojan horse, or other code-based malicious entity) that infects an operating system or application. Agencies are NOT required to report malicious logic that has been successfully quarantined by antivirus