ISC2 CC • Practice Test 24
Free ISC2 CC practice test — 15 questions with explanations. Set 24. No signup required.
A security analyst receives an alert from the SIEM indicating a potential data exfiltration event. The alert shows a large volume of data being transferred to an external IP address during non-business hours. What is the MOST appropriate immediate action?