Google
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER · Question #135
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Question #135: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to reveal the answer and full explanation for question #135. The question stem and answer options stay visible for context.
Question
A SOC team notices repeated outbound HTTPS connections from a Compute Engine instance to an external IP every 60 seconds. CPU usage is normal and no malware signatures trigger. What is the BEST next analytical step?
Options
- ABlock the destination IP immediately
- BPower off the instance
- CIdentify the process and service account generating the traffic
- DNotify executive leadership
Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER questions. Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.