200-201 Security Policies and Procedures • Set 3
200-201 Security Policies and Procedures Practice Test 3 — 15 questions with explanations. Free, no signup.
A security analyst receives an alert that an employee's workstation is generating outbound traffic to a known malware command-and-control IP address at 3:00 AM. According to the company's incident response policy, what is the FIRST action the analyst should take?