CompTIA CS0-003 Exam - Topic 2 Question 28 Discussion

Actual exam question for CompTIA's CS0-003 exam

Question #: 28
Topic #: 2

An organization receives a legal hold request from an attorney. The request pertains to emails related to a disputed vendor contract. Which of the following is the first step for the security team to take to ensure compliance with the request?

APublicly disclose the request to other vendors.

BNotify the departments involved to preserve potentially relevant information.

CEstablish a chain of custody, starting with the attorney's request.

DBack up the mailboxes on the server and provide the attorney with a copy.

Show Suggested Answer

Suggested Answer: B

The first step for the security team when receiving a legal hold request is to notify the relevant departments to preserve all potentially relevant information. This ensures that no data is altered, deleted, or otherwise tampered with, which is critical for maintaining the integrity of the evidence. Preserving information includes emails, documents, and any other data that might be relevant to the legal matter. Establishing a chain of custody and backing up data are also important steps, but notifying the involved parties is the immediate priority to prevent data loss.

by Essie at Sep 10, 2024, 11:48 PM

Limited Time Offer

25%

Off

Get Premium CS0-003 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Nakita

3 months ago

Not sure about D, backing up mailboxes seems too late.

upvoted 0 times

...

Olen

3 months ago

B is the first step, no doubt about it!

upvoted 0 times

...

Rosendo

3 months ago

Surprised that A is even an option, why would you disclose it?

upvoted 0 times

...

Chaya

4 months ago

I think C makes more sense, chain of custody is crucial.

upvoted 0 times

...

Sage

4 months ago

Definitely B, notifying departments is key!

upvoted 0 times

...

Samira

4 months ago

I feel like backing up the mailboxes might be too early in the process. We need to ensure compliance first, right?

upvoted 0 times

...

Essie

4 months ago

I practiced a similar question, and I believe the preservation of information is crucial. So, notifying the departments sounds right to me.

upvoted 0 times

...

Katina

4 months ago

I'm not entirely sure, but I remember something about establishing a chain of custody being important. Maybe that comes later?

upvoted 0 times

...

Blair

5 months ago

I think the first step should be to notify the departments involved to preserve potentially relevant information. That seems like a common practice in these situations.

upvoted 0 times

...

Nakita

5 months ago

This is a tricky one. I'm tempted to go with option C and establish a chain of custody, but I think the most important thing is to make sure the relevant information is preserved, so I'll go with option B.

upvoted 0 times

...

Shenika

5 months ago

I'm a bit confused here. Publicly disclosing the request to other vendors doesn't seem like the right approach, and backing up the mailboxes without a proper chain of custody could be problematic. I think I'll go with option B.

upvoted 0 times

...

Maxima

5 months ago

Okay, I think I've got it. The key is to preserve the information, so notifying the departments is the right first step. Option B is the way to go.

upvoted 0 times

...

Odette

5 months ago

Hmm, I'm a little unsure about this one. I want to make sure I don't miss anything important. Maybe I should review the options again more carefully.

upvoted 0 times

...

Becky

5 months ago

This seems like a pretty straightforward question. The first step would be to notify the departments involved to preserve any potentially relevant information, so I'd go with option B.

upvoted 0 times

...

Huey

5 months ago

This is a good opportunity to apply my knowledge of the software development process. I'll carefully compare the two life cycles and choose the option that best fits the missing piece.

upvoted 0 times

...

Marguerita

5 months ago

Definitely focusing on 'offering' - the mere proposal of an illicit payment seems to be the critical factor here.

upvoted 0 times

...

Karma

1 year ago

I'd go with B too. Covering your bases by getting the relevant teams involved right away is key. Can't have any 'oops, I deleted that' moments.

upvoted 0 times

...

Leana

1 year ago

Ha! Publicly disclosing the request to other vendors? That's a good way to get in trouble. B is the way to go, keep it internal until you have to share.

upvoted 0 times

Myong

1 year ago

D) Back up the mailboxes on the server and provide the attorney with a copy.

upvoted 0 times

...

Talia

1 year ago

Agreed, we need to make sure we handle this request properly.

upvoted 0 times

...

Hoa

1 year ago

B) Notify the departments involved to preserve potentially relevant information.

upvoted 0 times

...

Van

1 year ago

C) Establish a chain of custody, starting with the attorney's request.

upvoted 0 times

...

Stephanie

1 year ago

Definitely B. Gotta make sure those departments know what's up so they don't accidentally delete anything important. Don't want to be scrambling later on.

upvoted 0 times

Kiley

1 year ago

Good point, communication is key in these situations.

upvoted 0 times

...

Glenn

1 year ago

C) Establish a chain of custody, starting with the attorney's request.

upvoted 0 times

...

Jovita

1 year ago

B) Notify the departments involved to preserve potentially relevant information.

upvoted 0 times

...

Abel

1 year ago

Backing up the mailboxes on the server and providing the attorney with a copy should also be done to ensure we have a record of the emails.

upvoted 0 times

...

Glen

1 year ago

Establishing a chain of custody, starting with the attorney's request, is crucial for compliance with the legal hold request.

upvoted 0 times

...

Julio

1 year ago

B) Notify the departments involved to preserve potentially relevant information seems like the right first step. That way, you can ensure all relevant data is preserved before anything happens to it.

upvoted 0 times

Lai

1 year ago

C) Establish a chain of custody, starting with the attorney's request, is also crucial. That way, you can track the handling of the data from the beginning.

upvoted 0 times

...

Bette

1 year ago

B) Notify the departments involved to preserve potentially relevant information is definitely the first step to take. It's important to make sure nothing gets lost.

upvoted 0 times

...

Amber

1 year ago

I agree with Christoper. It's important to make sure we don't lose any important emails related to the disputed vendor contract.

upvoted 0 times

...

Christoper

1 year ago

I think the first step should be to notify the departments involved to preserve potentially relevant information.

upvoted 0 times

...