Isp 800-61 — CISSP Practice Questions

NIST Special Publication 800-61 is the Computer Security Incident Handling Guide, which defines a structured four-phase incident response process: preparation, detection and analysis, containment/eradication/recovery, and post-incident activity. The CISSP exam references this publication within Domain 7 (Security Operations) to assess whether candidates understand industry-standard frameworks for managing security incidents. Knowing the phases and the activities within each phase helps you answer questions about how organizations should detect breaches, limit damage, and learn from events. The guide also clarifies roles and communication responsibilities during an incident, which are common exam topics.

Free questions on isp 800-61