GIAC
GCIH · Question #425
GCIH Question #425: Real Exam Question with Answer & Explanation
Sign in or unlock GCIH to reveal the answer and full explanation for question #425. The question stem and answer options stay visible for context.
Incident Response & Cyber Kill Chain
Question
The Network Operations Center has identified and escalated an active denial of service incident on the mail server and several externally facing web sites to the security team for review. What are the next steps for the NOC team?
Options
- AIssue a company-wide alert to the users detailing the events.
- BMonitor the events and provide new information directly to the security team.
- CContact the web and mail administrators and provide them with the remediation solution.
- DEnable IPS and firewall controls to mitigate the events.
Unlock GCIH to see the answer
You've previewed enough free GCIH questions. Unlock GCIH for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#incident response#denial of service#NOC procedures#escalation