An organization has recently deployed an EDR solution across its laptops, desktops, and server infrastructure. The organization’s server infrastructure is deployed in an IaaS environment. A database within the non-production environment has been misconfigured with a routable IP and is communicating with a command and control server. Which of the following procedures should the security responder apply to the situation? (Choose two.)
Contain the server
Initiate a legal hold.
Perform a risk assessment.
Determine the data handling standard.
Disclose the breach to customers.
Perform an IOC sweep to determine the impact.
After several industry competitors suffered data loss as a result of cyberattacks, the Chief Operating Officer (COO) of a company reached out to the information security manager to review the organization’s security stance. As a result of the discussion, the COO wants the organization to meet the following criteria: Blocking of suspicious websites Prevention of attacks based on threat intelligence Reduction in spam Identity-based reporting to meet regulatory compliance Prevention of viruses based on signature Protect applications from web-based threats Which of the following would be the BEST recommendation the information security manager could make?
Reconfigure existing IPS resources
Implement a WAF
Deploy a SIEM solution
Deploy a UTM solution
Implement an EDR platform
How to Enroll CAS-003 CompTIA Advanced Security Practitioner (CASP) Exam course?
How many members can access this course with a coupon?
CAS-003 CompTIA Advanced Security Practitioner (CASP) Exam Course coupon is limited to the first 1,000 enrollments. Click 'Enroll Now' to secure your spot and dive into this course on Udemy before it reaches its enrollment limits!
