nerdexam
ExamsCAS-003Questions#166
CompTIA

CAS-003 · Question #166

CAS-003 Question #166: Real Exam Question with Answer & Explanation

The correct answer is D: Refer the issue to management for handling according to the incident response process.. The database contains PII (personally identifiable information) so the natural response is to want to get the issue addressed as soon as possible. However, in this question we have an IT Security Analyst working on a customer's system. Therefore, this IT Security Analyst does not

Question

The IT Security Analyst for a small organization is working on a customer's system and identifies a possible intrusion in a database that contains PII. Since PII is involved, the analyst wants to get the issue addressed as soon as possible. Which of the following is the FIRST step the analyst should take in mitigating the impact of the potential intrusion?

Options

  • AContact the local authorities so an investigation can be started as quickly as possible.
  • BShut down the production network interfaces on the server and change all of the DBMS account
  • CDisable the front-end web server and notify the customer by email to determine how the customer
  • DRefer the issue to management for handling according to the incident response process.

Explanation

The database contains PII (personally identifiable information) so the natural response is to want to get the issue addressed as soon as possible. However, in this question we have an IT Security Analyst working on a customer's system. Therefore, this IT Security Analyst does not know what the customer's incident response process is. In this case, the IT Security Analyst should refer the issue to company management so they can handle the issue (with your help if required) according to their incident response procedures.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-003 Practice