When comparing security configurations during an audit, an analyst notices that a recently deployed server's configuration deviates from the established organizational secure baseline. Which action should be taken FIRST based on best practices?
Review the deviation to determine if it's an authorized exception or requires remediation.
Automatically reject the server from the production environment until it matches the baseline.
Immediately remediate the server to match the secure baseline configuration.
Accept all deviations as acceptable risk given the server is newly deployed.