GIAC Exam GCED Topic 2 Question 50 Discussion

Actual exam question for GIAC's GCED exam

Question #: 50
Topic #: 2

[All GCED Questions]

Which of the following is an outcome of the initial triage during incident response?

ARemoval of unnecessary accounts from compromised systems

BSegmentation of the network to protect critical assets

CResetting registry keys that vary from the baseline configuration

DDetermining whether encryption is in use on in scope systems

Show Suggested Answer

Suggested Answer: B

by Viki at Sep 13, 2024, 02:39 AM

Limited Time Offer

25%

Off

Get Premium GCED Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Matthew

10 months ago

E. Serving hot coffee and donuts to the incident response team. Can't solve cyber incidents on an empty stomach, am I right?

upvoted 0 times

Quentin

8 months ago

D) Determining whether encryption is in use on in scope systems

upvoted 0 times

...

Shannon

8 months ago

C) Resetting registry keys that vary from the baseline configuration

upvoted 0 times

...

Roosevelt

8 months ago

B) Segmentation of the network to protect critical assets

upvoted 0 times

...

Shelba

9 months ago

A) Removal of unnecessary accounts from compromised systems

upvoted 0 times

...

Vonda

10 months ago

I'm going with C. Resetting registry keys that vary from the baseline configuration. Restoring normalcy is the name of the game.

upvoted 0 times

...

Kanisha

10 months ago

A. Removal of unnecessary accounts from compromised systems. Gotta clean house before you can start incident response.

upvoted 0 times

Carli

9 months ago

D) Determining whether encryption is in use on in scope systems

upvoted 0 times

...

Felix

9 months ago

B) Segmentation of the network to protect critical assets

upvoted 0 times

...

Chandra

10 months ago

A) Removal of unnecessary accounts from compromised systems

upvoted 0 times

...

Lawrence

10 months ago

D. Determining whether encryption is in use on in scope systems. That's crucial to understand the extent of the incident.

upvoted 0 times

Leonida

9 months ago

Encryption can play a key role in protecting sensitive data during an incident.

upvoted 0 times

...

Leonida

9 months ago

It's important to prioritize actions based on the initial triage findings.

upvoted 0 times

...

Leonida

10 months ago

Agreed, knowing if encryption is in use can help assess the impact of the incident.

upvoted 0 times

...

Ozell

10 months ago

But wouldn't segmentation of the network to protect critical assets also be an important outcome?

upvoted 0 times

...

William

11 months ago

I believe it's about removal of unnecessary accounts from compromised systems.

upvoted 0 times

...

Anabel

11 months ago

I think it's B. Segmentation of the network to protect critical assets. That's the key outcome of the initial triage during incident response.

upvoted 0 times

Willetta

10 months ago

Determining if encryption is in use on in scope systems is essential for incident response as well.

upvoted 0 times

...

Linsey

10 months ago

Yes, that's true. Resetting registry keys to the baseline configuration is also a key outcome.

upvoted 0 times

...

Barbra

10 months ago

But what about removing unnecessary accounts from compromised systems? Wouldn't that also be important?

upvoted 0 times

...

Cora

11 months ago

I agree, segmenting the network is crucial to protect important assets.

upvoted 0 times

...

Ozell

11 months ago

I think the outcome of initial triage is determining whether encryption is in use on in scope systems.

upvoted 0 times

...