RCR 077: Understanding Investigation Aspects for the CISSP Exam - CISSP Training and Study!

Description: 

Shon Gerber from ShonGerber.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career.  Shon utilizes his expansive knowledge while providing superior training from his years of training people in cybersecurity.   

In this episode, Shon will provide CISSP training for Domain 7 (Security Operations) of the CISSP Exam.  His extensive training will cover all of the CISSP domains. 

•          CISSP Article –RAYGUN - SDLC:  7 phases, popular models, benefits, and more
•          CISSP Training – Integrate Security in the Software Development Life Cycle (SDLC)
•          CISSP Exam Questions

BTW - Get access to all my CISSP Training Courses here at:  https://shongerber.com/  

CISSP Exam Questions 

Question:  113 

1. When conducting an incident investigation within an organization what are some keep items to keep in mind before starting? 
   1. Assemble a team with best skillsets to meet objectives 
   2. Operate under your Incident Response Process 
   3. Define specific Rules of Engagement (ROEs) around Law Enforcement, Interviewing Employees, etc. 
   4. All of the above 

Explanation: [d] All of the above should be considered when conducting an investigation of an incident within your organization.   

------------------------------------ 

Question:  114 

1. What are the three options used for gathering evidence for an investigation? 
   1. Voluntary Surrender, Subpoena, Search Warrant 
   2. Involuntary Surrender, Subpoena, Search Warrant 
   3. Voluntary Surrender, Search and Seizure, Warrant 
   4. Involuntary Surrender, Search and Seizure, Warrant 

Explanation: [a] When gathering evidence there are three legal options available to gain access to evidence:  Voluntary Surrender, Subpoena, and a Search Warrant.    

------------------------------------ 

Question:  115 

1. What of the following steps will not be included within the change management process? 
   1. Immediate change, if leadership wants the change to occur 
   2. A change request 
   3. Rollback plan for the change 
   4. Documenting the change 

Explanation: [a] There are situations where emergency changes need to occur, but it should be an emergency and not the desire of an individual to just make the change.   

------------------------------------ 

Want to find Shon elsewhere on the internet? 

LinkedIn – www.linkedin.com/in/shongerber 

Facebook - https://www.facebook.com/CyberRiskReduced/ 

LINKS:  

• ISC2 Training Study Guide 
  • https://www.isc2.org/Training/Self-Study-Resources 
• Online Article 
  • https://www.dflabs.com/blog/9-key-components-of-incident-and-forensics-management/ 

TRANSCRIPT: