200-201 Security Monitoring • Set 8
200-201 Security Monitoring Practice Test 8 — 15 questions with explanations. Free, no signup.
A SOC analyst is reviewing a security alert generated by the SIEM. The alert indicates a successful login from an unusual geographic location for a user who typically logs in from the corporate office. The analyst verifies that the user is currently on vacation and should not be accessing the network. What should the analyst do next?