← Back to exam page

CIS-SIR Certified Implementation Specialist - Security Incident Response

Loading demo links...

Showing 1–3 of 10 questions

Question 1

Which of the following tag classifications are provided baseline? (Choose three.)

Select all that apply, then click Submit answer.

  • Traffic Light Protocol

  • Block from Sharing

  • IoC Type

  • Severity

  • Cyber Kill Chain Step

  • Escalation Level

  • Enrichment whitelist/blacklist
Question 2

What three steps enable you to include a new playbook in the Selected Playbook choice list? (Choose three.)

Select all that apply, then click Submit answer.

  • Add the TLP: GREEN tag to the playbooks that you want to include in the Selected Playbook choice list

  • Navigate to the sys_hub_flow.list table

  • Search for the new playbook you have created using Flow Designer

  • Add the sir_playbook tag to the playbooks that you want to include in the Selected Playbook choice list

  • Navigate to the sys_playbook_flow.list table
Question 3

There are several methods in which security incidents can be raised, which broadly fit into one of these categories: __________. (Choose two.)

Select all that apply, then click Submit answer.

  • Integrations

  • Manually created

  • Automatically created

  • Email parsing