ISC2 Exam ISSAP Topic 2 Question 66 Discussion

process is responsible for supporting and building up the incident combating process. It ensures the stability of the system and also confirms

that the incident does not get any worse. The Containment phase includes the process of preventing further contamination of the system or

network, and preserving the evidence of the contamination.

The loss done to the system due to spamming is recovered using the recovery phase. The Recovery phase of the Incident handling process is

the stage at which the enterprise or the system is settled back to its balanced production state. It involves the quality assurance tests and

re-evaluation of the system for the purpose of the system revival or recovery.

The Eradication phase of the Incident handling process involves the cleaning-up of the identified harmful incidents from the system. It includes

the analyzing of the information that has been gathered for determining how the attack was committed. To prevent the incident from

happening again, it is vital to recognize how it was conceded out so that a prevention technique is applied.