Practice Tests / ECCouncil / ECIH
ECCouncil
ECIH Incident Handler
Use original educational practice content, randomized simulator sessions, score history and explanation review for ECIH.
Practice questions are provided in English to match the language commonly used in IT certification exams.
QZ9 is an independent training platform. All practice questions are original and created for educational purposes only. We do not provide unauthorized vendor exam content. Microsoft, AWS, Cisco, CompTIA, PMI and other trademarks belong to their respective owners.
VendorECCouncil
CodeECIH
DurationDuration varies
Questions74 refs
Exam facts
Objective-based preparation without unauthorized content
Certification metadata is preserved from the legacy QZ9 catalog. Questions remain English-only.
Start Practice Test
1Find your exam
2Start the simulator
3Review results
QZ9Independent training platform
Free question preview
Exam simulator
Practice questions are provided in English to match the language commonly used in IT certification exams.
Question 1
The goal of incident response is to handle the incident in a way that minimizes damage and reduces recovery time and cost. Which of the following does NOT constitute a goal of incident response?
Question 2
An organization faced an information security incident where a disgruntled employee passed sensitive access control information to a competitor. The organization’s incident response manager, upon investigation, found that the incident must be handled within a few hours on the same day to maintain business continuity and market competitiveness. How would you categorize such information security incident?
Question 3
Business continuity is defined as the ability of an organization to continue to function even after a disastrous event, accomplished through the deployment of redundant hardware and software, the use of fault tolerant systems, as well as a solid backup and recovery strategy. Identify the plan which is mandatory part of a business continuity plan?
Question 4
The flow chart gives a view of different roles played by the different personnel of CSIRT. Identify the incident response personnel denoted by A, B, C, D, E, F and G.
Question 5
Incident handling and response steps help you to detect, identify, respond and manage an incident. Which of the following steps focus on limiting the scope and extent of an incident?