May 2024

Article

Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies. Frank is loading evidence from several hard drives into a forensic analysis system. As he reviews the evidence, he wants to organize it in several different ways: by device, by investigative theory, and by user. What method would best allow him to organize the data in this way? A. Printouts B. Filenames C. Folders D. Tags Correct Answer: D Tags are the best approach here because Frank may apply multiple tags to the same evidence. This is our correct answer. Using file or folder names would require placing multiple copies of the evidence in different files or folders and would be difficult to manage, making file and folder incorrect answers. Using printouts of the evidence is an unnecessary burden, another incorrect answer.   Interested in more practice test questions?   Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test! ...