350-701 Endpoint Protection and Detection • 20 Questions
20 350-701 Endpoint Protection and Detection practice questions with answers and explanations. Free, no signup.
A security administrator notices that several endpoints in the finance department are exhibiting unusual network behavior, including connections to known malicious IP addresses. The administrator has deployed Cisco Secure Endpoint (formerly AMP for Endpoints) with TETRA and has enabled the built-in firewall. What is the best course of action to quickly identify the root cause and contain the threat?