200-201 · Question #566
200-201 Question #566: Real Exam Question with Answer & Explanation
The correct answer is B: containment. Containment focuses on stopping the incident from continuing or spreading by applying immediate controls (such as blocking sources, rate limiting, or filtering) and verifying those actions are effective to prevent further impact. Exam Questions, Study Guides, Practice Tests. Lead
Question
A user reported that a mobile application is working very slowly. The DDOS tool reports high volume traffic. During which phase will CSIRT ensure that the incident does not continue and confirm that the organization took the required action?
Options
- Apreparation
- Bcontainment
- Crecovery
- Deradication
Explanation
Containment focuses on stopping the incident from continuing or spreading by applying immediate controls (such as blocking sources, rate limiting, or filtering) and verifying those actions are effective to prevent further impact. Exam Questions, Study Guides, Practice Tests. Lead the way to help you pass any IT Certification exams, 100% Pass Guaranteed or Full Refund. Especially Cisco, Microsoft, CompTIA, Citrix, EMC, HP, Oracle, VMware, Juniper, Check Point, LPI, Nortel, EXIN and so on. Our Slogan: First Test, First Pass. Help you to pass any IT Certification exams at the first try. You can reach us at any of the email addresses listed below. Any problems about IT certification or our products, you could rely upon us, we will give you satisfactory answers in 24 hours.
Topics
Community Discussion
No community discussion yet for this question.