1. Home
  2. EC-COUNCIL
  3. 212-89

EC-Council Certified Incident Handler (ECIH)

Exam Details

  • Exam Code
    :212-89
  • Exam Name
    :EC-Council Certified Incident Handler (ECIH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :163 Q&As
  • Last Updated
    :

EC-COUNCIL EC-COUNCIL Certifications 212-89 Questions & Answers

  • Question 71:

    The role that applies appropriate technology and tries to eradicate and recover from the incident is known as:

    A. Incident Manager

    B. Incident Analyst

    C. Incident Handler

    D. Incident coordinator

  • Question 72:

    CERT members can provide critical support services to first responders such as:

    A. Immediate assistance to victims

    B. Consolidated automated service process management platform

    C. Organizing spontaneous volunteers at a disaster site

    D. A + C

  • Question 73:

    Which of the following service(s) is provided by the CSIRT:

    A. Vulnerability handling

    B. Technology watch

    C. Development of security tools

    D. All the above

  • Question 74:

    The main feature offered by PGP Desktop Email is:

    A. Email service during incidents

    B. End-to-end email communications

    C. End-to-end secure email service

    D. None of the above

  • Question 75:

    Incident Response Plan requires

    A. Financial and Management support

    B. Expert team composition

    C. Resources

    D. All the above

  • Question 76:

    The service organization that provides 24x7 computer security incident response services to any user, company, government agency, or organization is known as:

    A. Computer Security Incident Response Team CSIRT

    B. Security Operations Center SOC

    C. Digital Forensics Examiner

    D. Vulnerability Assessor

  • Question 77:

    Which of the following is a correct statement about incident management, handling and response:

    A. Incident response is on the functions provided by incident handling

    B. Incident handling is on the functions provided by incident response

    C. Triage is one of the services provided by incident response

    D. Incident response is one of the services provided by triage

  • Question 78:

    Which of the following is an incident tracking, reporting and handling tool:

    A. CRAMM

    B. RTIR

    C. NETSTAT

    D. EAR/ Pilar

  • Question 79:

    Removing or eliminating the root cause of the incident is called:

    A. Incident Eradication

    B. Incident Protection

    C. Incident Containment

    D. Incident Classification

  • Question 80:

    The correct sequence of incident management process is:

    A. Prepare, protect, triage, detect and respond

    B. Prepare, protect, detect, triage and respond

    C. Prepare, detect, protect, triage and respond

    D. Prepare, protect, detect, respond and triage

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 212-89 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.