اختبار شهادة محلل الأمن السيبراني CompTIA CySA+

السؤال 584 من 1040

كل الأسئلة

تنبيه مهم

هذه الصفحة مخصصة للأرشفة وظهور السؤال في نتائج البحث فقط، وليست التجربة الفعلية للاختبار.

A user reports a malware alert to the help desk. A technician verifies the alert, determines the workstation is classified as a low-severity device, and uses network controls to block access. The technician then assigns the ticket to a security analyst who will complete the eradication and recovery processes. Which of the following should the security analyst do next?

A Document the procedures and walk through the incident training guide.
B Reverse engineer the malware to determine its purpose and risk to the organization.
C Sanitize the workstation and verify countermeasures are restored.
D Isolate the workstation and issue a new computer to the user.

السؤال السابق

السؤال التالي

لا توجد نقاشات منشورة لهذا السؤال حالياً.