Final answer:
According to the NIST framework, the four objectives of incident response are preparation, containment, eradication, and recovery, detection and analysis, and post-incident activity.
Step-by-step explanation:
The correct answer is option A, C, D, and E.
According to the NIST framework, the four objectives of incident response are:
- Preparation: This involves planning and preparing for potential incidents by identifying risks, developing response plans, and training employees. It includes measures such as implementing civil defense and emergency preparedness measures, which may include anti-terrorism legislation.
- Containment, eradication, and recovery: This objective focuses on limiting the impact of the incident, removing the threat, and restoring affected systems and data to a normal state.
- Detection and analysis: This objective involves identifying and understanding the nature of the incident, including analyzing the methods used by the attacker and determining the scope of the incident.
- Post-incident activity: This involves conducting a post-incident review, documenting lessons learned, and making improvements to prevent similar incidents in the future.
The correct answer to what the four objectives of incident response according to the NIST framework are: A. Preparation, C. Containment, eradication, and recovery, D.
Detection and analysis, and E. Post-incident activity. Preparation involves establishing and maintaining an incident response capability. Detection and analysis pertain to the monitoring for and identifying cybersecurity events.
Containment, eradication, and recovery deal with steps to address and mitigate the impact of an incident. Finally, Post-incident activity involves actions taken after an incident to improve future response efforts and mitigate the risk of future incidents.
These objectives collectively work to ensure the resilience of critical national infrastructure and implement civil defense and emergency preparedness measures.