New Release: Earn Rewards by referring new users! You can earn rewards redeemable for discounts on Vouchers and Memberships!

Free CompTIA CySA+ CS0-003 Practice Question

During the monitoring phase, an anomaly is detected in the network traffic pattern indicating potential exfiltration of sensitive data. The security analyst observes a consistent high volume of outbound traffic heading to an unusual external IP address. What should the analyst do FIRST in accordance with incident declaration and escalation practices?

  • Follow the organizational incident response plan to determine if the observed activity meets the criteria for incident declaration and escalate as required.

  • Contact law enforcement for immediate investigation before taking any internal response measures.

  • Draft an executive summary of the event to be distributed to all employees to ensure company-wide awareness.

  • Immediately disconnect the network to prevent further potential data loss without validating the incident.

This question's topic:
CompTIA CySA+ CS0-003 / 
Reporting and Communication
Your Score:

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Use your unique sharing link to refer friends and earn rewards! Hide these
SAVE $49
CompTIA Cybersecurity Analyst Voucher (CySA+ CS0-003)
$404.00 $355.00