Written Lab


                1.  List the different phases of incident response identified in the
                    CISSP Security Operations domain.


                2.  Describe the primary types of intrusion detection systems.
                3.  Describe the relationship between auditing and audit trails.


                4.  What should an organization do to verify that accounts are
                    managed properly?