ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
During a quarterly incident-response tabletop exercise, a security administrator wants to verify that the team can meet the plan's requirement to escalate a suspected ransomware infection to the CISO and legal counsel within 30 minutes of detection. Which exercise activity will BEST test whether this escalation path is understood and can be executed on time?
Have each participant verbally step through the incident scenario while recording, in real time, whom they would notify and the exact time those communications would occur
Distribute a post-exercise questionnaire asking participants whether they understood the 30-minute escalation requirement
Run a simulated ransomware attack in a sandbox and evaluate the technical containment actions without involving legal or executive staff
Analyze past incident tickets to calculate the average elapsed time between detection and management notification
A tabletop exercise is a discussion-based event that validates documented procedures by having participants verbally walk through their actions as simulated events unfold. Asking each responder to state-in real time-which individuals or groups they would notify and when allows observers to capture actual decision points and timestamps, confirming that everyone knows the correct escalation path and that it can be completed within the required timeframe. Merely surveying participants afterward, reviewing historical tickets, or running a technical containment drill without invoking the communication chain does not directly test the current escalation procedure or its timing requirements.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a tabletop exercise in incident response?
Open an interactive chat with Bash
Why is it important to involve legal counsel and executives in ransomware incident escalation?
Open an interactive chat with Bash
Why does real-time communication matter during incident-response exercises?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Security Concepts and Practices
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .