Q: 14
Refer to the exhibit.
A security analyst is reviewing alerts from the SIEM system that was just implemented and notices a
possible indication of an attack because the SSHD system just went live and there should be nobody
using it. Which action should the analyst take to respond to the alert?
A security analyst is reviewing alerts from the SIEM system that was just implemented and notices a
possible indication of an attack because the SSHD system just went live and there should be nobody
using it. Which action should the analyst take to respond to the alert?Options
Discussion
No comments yet. Be the first to comment.
Be respectful. No spam.
