Dell-EMC
D-CSF-SC-01 · Question #89
D-CSF-SC-01 Question #89: Real Exam Question with Answer & Explanation
Sign in or unlock D-CSF-SC-01 to reveal the answer and full explanation for question #89. The question stem and answer options stay visible for context.
Question
The network security team in your company has discovered a threat that leaked partial data on a compromised file server that handles sensitive information. Containment must be initiated and addresses by the CSIRT. Service disruption is not a concern because this server is used only to store files and does not hold any critical workload. Your company security policy required that all forensic information must be preserved. Which actions should you take to stop data leakage and comply with requirements of the company security policy?
Options
- ADisconnect the file server from the network to stop data leakage and keep it powered on for further
- BShut down the server to stop the data leakage and power it up only for further forensic analysis.
- CRestart the server to purge all malicious connections and keep it powered on for further analysis.
- DCreate a firewall rule to block all external connections for this file server and keep it powered on for
Unlock D-CSF-SC-01 to see the answer
You've previewed enough free D-CSF-SC-01 questions. Unlock D-CSF-SC-01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.