CompTIA Study Materials
AWS Study Materials
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA CySA+ CS0-003 Practice Question

Your team has identified a breach in progress on an endpoint device within the company's network. What is the FIRST step you should take to isolate this device while minimizing the potential for disruption to your organization's operations?

  • Disconnect the device from the network

  • Enable the firewall on the device immediately

  • Power off the device to prevent data loss

  • Physically remove the device from the office

Subscribe to avoid duplicate questions and track your progress over time

Your Score:
Incident Response and Management
Security Operations
Vulnerability Management
Reporting and Communication
CompTIA CySA+ CS0-003
  • Security Operations
  • Vulnerability Management
  • Incident Response and Management
    • This question is filed here
  • Reporting and Communication