For which two reasons should organizations customize their incident response plans based on NIST SP 800-
61 or another incident response standard? (Select two.)
A. To change the order of operations in the Incident Response Lifecycle processes to match ISO 12035.
B. To document the contact information for each of the security analysts at your managed security services provider.
C. To meet unique requirements relating to the organization's mission, size, structure, and functions.
D. To make it more generic so that it can be used to respond to incidents from new attack vectors.
E. To improve incident response effectiveness and efficiency by creating a repeatable process anddocumented handoffs.
正解:C,E
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Exhibit:

What can be determined by the threat information shown in the exhibit?
A. More than 150 messages containing this threat were unclicked or were deleted.
B. Five messages containing this threat were pulled from mailboxes after delivery.
C. The VIP user clicked on the non-rewritten URL in the threat message.
D. The URLs related to the threat were rewritten after the threat was discovered.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
You would like to view the total number of uncleared threats or false positives that have been interacted with by users over the past 2 weeks. How can this be accomplished on the TAP Dashboard?
A. On the Threats page, select Last 14 days and click on the "Impacted" column header.
B. On the Threats page, select Last 14 days and click on the "Highlighted" column header.
C. On the Threats page, select Last 14 days and click on the "At Risk" column header.
D. On the Threats page, select Last 14 days and click on the "Intended" column header.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Which of the following is a useful training exercise for security analysts?
A. Incident response tabletop
B. Updating standard operating procedures
C. Vulnerability scanning
D. Network port scanning
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
What happens when a user clicks a rewritten URL that TAP URL Defense has determined to be malicious?
A. The system delivers a separate email alert to the user.
B. The user is shown a warning page and the site is blocked.
C. The user is redirected to the organization's homepage.
D. The link opens normally and the site remains accessible.
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
Which two threat protection capabilities are available as part of Proofpoint's Targeted Attack Protection (TAP)? (Select two.)
A. Pulls malicious emails from user inbox after delivery
B. Training solution that drives user behavioral change
C. Cloud-based solution that remediates threats post-delivery
D. Protects users against threats in email attachments
E. Provides protection against URL-based email threats
正解:D,E
解説: (Pass4Test メンバーにのみ表示されます)
581 お客様のコメント





Haraguchi -
Pass4Testが徹底分析した頻出ポイントを中心に出題範囲をしっかり網羅しているので、PPAN01初学者も再挑戦者も効率的に学習を進められます!