Cisco
350-201(NEW-127Q) · Question #55
350-201(NEW-127Q) Question #55: Real Exam Question with Answer & Explanation
Sign in or unlock 350-201(NEW-127Q) to reveal the answer and full explanation for question #55. The question stem and answer options stay visible for context.
Incident Response and Handling
Question
The incident response team of an organization uncovers a complex cyber attack involving multiple endpoints, advanced malware, and data exfiltration. The team successfully contained the threat and prevented further damage. What should be the next step in this investigation?
Options
- APerform eradication measures, followed by system recovery and restoration.
- BAssess the severity and scope of the incident and identify affected systems.
- CConduct a comprehensive vulnerability assessment of the entire network.
- DConduct a post-incident review and update incident response policies and procedures.
Unlock 350-201(NEW-127Q) to see the answer
You've previewed enough free 350-201(NEW-127Q) questions. Unlock 350-201(NEW-127Q) for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Incident Response Lifecycle#Eradication#System Recovery#Threat Containment