In the eradication phase, the Incident Handling & Response team must remove or
eliminate the root cause of the incident and close all the attack vectors to prevent
similar incidents in future. Eradication is done with countermeasures. Which of the
following is a countermeasure?
Prepare the reports in such a way that it is clearly understood by everyone.
Eliminate the access paths and exploits.
Communicate the result and report to the management and stakeholders.
The computer systems and networks are monitored and validated.



Answer :

Final answer:

Countermeasures in incident handling involve eliminating access paths, monitoring systems, and effective communication.


Explanation:

Countermeasure: Countermeasures in the eradication phase of incident handling involve removing or closing attack vectors. An example of a countermeasure is eliminating access paths and exploits that attackers could use to breach security.

Monitoring and validation: Continuously monitoring and validating computer systems and networks are essential actions to identify and address security threats.

Communication: Communicating incident results and reports to management and stakeholders is crucial for transparency and future prevention strategies.


Learn more about Incident Handling & Response team here:

https://brainly.com/question/32938993