[&] What is typically included in an incident response playbook?
- Financial cost estimates of incidents
- General industry best practices
- Company-wide security policies
- Step-by-step workflows for specific scenarios

[&] Why is standardization important in incident response playbooks?
- It reduces the time taken to write the playbook
- It ensures every incident is treated differently
- It ensures consistency in responding to similar incidents.
- It makes playbooks harder to follow to prevent misuse.

[&] How does an incident response playbook differ from a general incident response plan?
- It covers all possible security scenarios
- It is more detailed and specific to certain incidents
- It focuses primarily on post-incident recovery
- It is less frequently updated

[&] What is the main purpose of an incident response playbook?
- To act as a general policy document for security teams
- To offer strategic guidance across all incidents
- To provide specific, actionable steps for a particular type of security incident
- To outline the company's legal protocols during incidents

[&] Which of the following is an example of a trigger that might initiate an incident response playbook?
- Employee training completion
- Detection of a phishing email
- Monthly security audit
- Regular software update