Cisco
350-201(NEW-127Q) · Question #21
350-201(NEW-127Q) Question #21: Real Exam Question with Answer & Explanation
Sign in or unlock 350-201(NEW-127Q) to reveal the answer and full explanation for question #21. The question stem and answer options stay visible for context.
Incident Detection and Response
Question
In a large financial institution, a cybersecurity analyst is responsible for monitoring network traffic patterns for any signs of cyberattacks. During routine analysis, the analyst identifies this sequence of events that indicates a potential secur Unusual Outbound Traffic Spike Lateral Movement Elevated Privilege Usage Data Exfiltration In this scenario, which remediation recommendations should the cybersecurity analyst provide to address the potential security breach effectively?
Options
- AConduct a detailed analysis of the compromised server to identify the attack vector and close any vulnerabilities.
- BShare the incident findings with a cybersecurity threat intelligence-sharing consortium for collaborative threat analysis.
- CImmediately disconnect the affected internal server from the network to prevent further data exfiltration.
- DImplement strict access controls and monitor privileged user accounts for any suspicious activities.
Unlock 350-201(NEW-127Q) to see the answer
You've previewed enough free 350-201(NEW-127Q) questions. Unlock 350-201(NEW-127Q) for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Incident Response#Attack Chain Analysis#Lateral Movement#Forensic Investigation