200-201 Security Policies and Procedures • Set 2
200-201 Security Policies and Procedures Practice Test 2 — 15 questions with explanations. Free, no signup.
During the Detection and Analysis phase of incident response, a SOC Tier 1 analyst identifies a potential malware infection on a critical server. What is the FIRST action the analyst should take according to NIST SP 800-61 Rev 2?