ExpertHard1 markMultiple Choice
CPA · Question 12 · Area II: Security
Which component of the NIST Cybersecurity Framework (CSF) focuses on developing and implementing the appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity event?
Which component of the NIST Cybersecurity Framework (CSF) focuses on developing and implementing the appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity event?
Answer options:
A.
Respond
B.
Protect
C.
Recover
D.
Detect
How to approach this question
Memorize the 5 NIST CSF Functions: Identify, Protect, Detect, Respond, Recover. 'Restore' = Recover.
Full Answer
C.Recover✓ Correct
Recover
The Recover function includes Recovery Planning, Improvements, and Communications to restore impaired services.
Common mistakes
Confusing Respond (handling the active attack) with Recover (getting back to normal).
Practice the full CPA ISC Practice Exam 4
82 questions · hints · full answers · grading
More questions from this exam
Q01A CPA is advising a client who is migrating their legacy on-premise ERP system to a cloud environ...HardQ02An auditor is reviewing the Service Level Agreement (SLA) for a client using a public cloud provi...HardQ03A company uses an Infrastructure as a Service (IaaS) model. During an IT audit, the auditor disco...HardQ04An organization is implementing the COSO Enterprise Risk Management (ERM) framework to govern its...HardQ05During a walkthrough of an order-to-cash process, the auditor observes that the sales manager can...Hard