1. Home
  2. EC-COUNCIL
  3. 212-89

EC-Council Certified Incident Handler (ECIH)

Exam Details

  • Exam Code
    :212-89
  • Exam Name
    :EC-Council Certified Incident Handler (ECIH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :163 Q&As
  • Last Updated
    :Apr 16, 2025

EC-COUNCIL EC-COUNCIL Certifications 212-89 Questions & Answers

  • Question 91:

    A payroll system has a vulnerability that cannot be exploited by current technology. Which of the following is correct about this scenario:

    A. The risk must be urgently mitigated

    B. The risk must be transferred immediately

    C. The risk is not present at this time

    D. The risk is accepted

  • Question 92:

    Overall Likelihood rating of a Threat to Exploit a Vulnerability is driven by :

    A. Threat-source motivation and capability

    B. Nature of the vulnerability

    C. Existence and effectiveness of the current controls

    D. All the above

  • Question 93:

    If the loss anticipated is greater than the agreed upon threshold; the organization will:

    A. Accept the risk

    B. Mitigate the risk

    C. Accept the risk but after management approval

    D. Do nothing

  • Question 94:

    Which of the following can be considered synonymous:

    A. Hazard and Threat

    B. Threat and Threat Agent

    C. Precaution and countermeasure

    D. Vulnerability and Danger

  • Question 95:

    Incident prioritization must be based on:

    A. Potential impact

    B. Current damage

    C. Criticality of affected systems

    D. All the above

  • Question 96:

    An information security incident is

    A. Any real or suspected adverse event in relation to the security of computer systems or networks

    B. Any event that disrupts normal today's business functions

    C. Any event that breaches the availability of information assets

    D. All of the above

  • Question 97:

    Total cost of disruption of an incident is the sum of

    A. Tangible and Intangible costs

    B. Tangible cost only

    C. Intangible cost only

    D. Level Two and Level Three incidents cost

  • Question 98:

    The sign of incident that may happen in the future is called:

    A. A Precursor

    B. An Indication

    C. A Proactive

    D. A Reactive

  • Question 99:

    Incidents such as DDoS that should be handled immediately may be considered as:

    A. Level One incident

    B. Level Two incident

    C. Level Three incident

    D. Level Four incident

  • Question 100:

    The largest number of cyber-attacks are conducted by: A. Insiders

    B. Outsiders

    C. Business partners

    D. Suppliers

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 212-89 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.