ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 625 discussion

Actual exam question from CompTIA's CAS-004
Question #: 625
Topic #: 1
[All CAS-004 Questions]

After a security breach, an incident response team schedules a session with various stakeholders to discuss the results of the findings and explore ways to prevent similar incidents from reoccurring. Which of the following describes this step in the incident response process?

  • A. Lessons learned
  • B. Containment
  • C. Business impact analysis
  • D. Tabletop exercise
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Steel16 at March 11, 2025, 8:45 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Steel16
2 months ago
Selected Answer: A
o Lessons learned phase of an incident response process involves reviewing the aftermath of a security breach, identifying the root causes of the incident, and formulating actionable recommendations to prevent similar issues from happening again in the future. This session with stakeholders is precisely what the description describes.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago