Free CompTIA Security+ SY0-701 Practice Question

During a security incident, after initial detection and analysis, an IT security analyst is determining which course of action to take to limit the damage and prevent extended downtime. Out of the following options, which should be prioritized?

Recovery
Lessons learned
Containment
Eradication

This question's topic:

CompTIA Security+ SY0-701 /

Security Operations

SAVE $49

CompTIA Security+ Voucher (SY0-701)

$404.00 $355.00

Free CompTIA Security+ SY0-701 Practice Question

Answer Description

Learn More

What does containment mean in incident response?

Why is eradication a subsequent step and not the first priority?

What are the key phases of incident response after containment?

Free CompTIA Security+ SY0-701 Practice Question

Report Issue

Answer Description

Learn More

What does containment mean in incident response?

Why is eradication a subsequent step and not the first priority?

What are the key phases of incident response after containment?

Report Issue