CompTIA
CAS-001 · Question #191
CAS-001 Question #191: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-001 to reveal the answer and full explanation for question #191. The question stem and answer options stay visible for context.
Question
The security administrator is receiving numerous alerts from the internal IDS of a possible Conficker infection spreading through the network via the Windows file sharing services. Given the size of the company which deploys over 20,000 workstations and 1,000 servers, the security engineer believes that the best course of action is to block the file sharing service across the organization by placing ACLs on the internal routers. Which of the following should the security administrator do before applying the ACL?
Options
- AQuickly research best practices with respect to stopping Conficker infections and implement the
- BConsult with the rest of the security team and get approval on the solution by all the team members
- CApply the ACL immediately since this is an emergency that could lead to a widespread data compromise.
- DCall an emergency change management meeting to ensure the ACL will not impact core business functions.
Unlock CAS-001 to see the answer
You've previewed enough free CAS-001 questions. Unlock CAS-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.