SY0-701 Security Operations • Set 3
SY0-701 Security Operations Practice Test 3 — 15 questions with explanations. Free, no signup.
A security analyst detects real-time data exfiltration from a critical production database that supports customer transactions. The exfiltration appears to be occurring via a compromised application service account. Which containment strategy should the analyst implement FIRST to minimize damage while preserving forensic data?