Module Review Questions
Part 1
1. List the seven-step CP process as defined by the NIST. What is the recommended standard approach to the process?
2. List and describe the three criteria used to determine whether an actual incident is occurring.
3. List and describe several containment strategies given in the text. On which two tasks do they focus?
4. Why should continuity plans be tested and rehearsed?
Part 2
Design an incident response plan for your home computer. Include actions to be taken if each of the following events occurs:
a. Virus attack
b. Power failure
c. Fire
d. Burst water pipe
e. ISP failure
What other scenarios do you think are important and need a plan?