Google
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER · Question #131
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Question #131: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to reveal the answer and full explanation for question #131. The question stem and answer options stay visible for context.
Question
You received an alert from Container Threat Detection that an added binary has been executed in a business critical workload. You need to investigate and respond to this incident. What should you do? (Choose two.)
Options
- ANotify the workload owner. Follow the response playbook, and ask the threat hunting team to
- BReview the finding, investigate the pod and related resources, and research the related attack
- CReview the finding, quarantine the cluster containing the running pod, and delete the running pod
- DSilence the alert in the Security Command Center (SCC) console, as the alert is a low severity
- EKeep the cluster and pod running, and investigate the behavior to determine whether the activity
Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER questions. Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.