Free CompTIA CySA+ CS0-003 Practice Question

During a routine security audit, your team discovers multiple instances of unauthorized access attempts on a sensitive database. As the lead incident responder, what should be your first step according to a well-structured incident response plan?

  • Notify law enforcement.

  • Identify and validate the incident.

  • Isolate the affected system.

  • Inform upper management.

This question's topic:
CompTIA CySA+ CS0-003 / 
Incident Response and Management
Your Score:

Check or uncheck an objective to set which questions you will receive.