CIS-SIR
Automation and Standard Processes
easy
Question 9 of 60

How does user reported phishing create a security incident in SIR?

AEmployees forward suspicious email as an attachment to the phishing email address, and if the attached email matches a threat rule, a security incident is created
BEmployees paste the email body into a dashboard widget and a task is opened
CEmployees send the message to any personal mailbox and the platform always creates an incident
DEmployees attach a screenshot to a response task and a playbook starts automatically

More Automation and Standard Processes Questions

60 questions

Full Certified Implementation Specialist - Security Incident Response Practice Test

All topics covered

All Certified Implementation Specialist - Security Incident Response Questions

Browse by topic

Related Questions

A responder wants to start a playbook manually from an incident form. Which action should be used?...

easy

An incident already has a specific playbook attached and it is still active. What happens if the ana...

easy

What is the primary purpose of Setup Assistant in SIR?...

easy

How should security incident groups be configured for role inheritance to work as intended?...

easy

A team built automation in Flow Designer and expects the playbook component to show it as a playbook...

medium
View all Automation and Standard Processes questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account