The IT Security Analyst for a small organization is working on a customer’s system and identifies a possible intrusion in a database that contains PII. Since PII is
involved, the analyst wants to get the issue addressed as soon as possible. Which of the following is the FIRST step the analyst should take in mitigating the impact
of the potential intrusion?
A.
Contact the local authorities so an investigation can be started as quickly as possible.
B.
Shut down the production network interfaces on the server and change all of the DBMS account passwords.
C.
Disable the front-end web server and notify the customer by email to determine how the customer would like to proceed.
D.
Refer the issue to management for handling according to the incident response process.
seenagape has the right idea!! I think this answer would be awesome if we applied it in real life. Hell…Sony did when they got hacked 😉
Wrote the CAS-002 exam and passed with a good score!
77 questions in total, started with 10 SIMs: configuring the firewall ACL, placing equipments in the network to stop attacks, and so on.
I mainly learned the CASP Cert Guide books and practised PassLeader CAS-002 dumps with 900q (new version, helped a lot for my passing).
Dumps on this site are not valid, only 2 SIMs and few MCQs are from them, other 8 SIMs and many MCQs are missing!!!
Recommend to practise PassLeader 900q CAS-002 dumps, especially the last 240 questions. Here you can get PassLeader CAS-002 dumps:
http://www.comptiadump.com/category/comptia-advanced-security-practitioner-casp-certification/cas-002-dumps
GOOD LUCK!!
Besides, download that PassLeader CAS-002 dumps in PDF from:
https://drive.google.com/open?id=0B-ob6L_QjGLpenQtV3dLMDkyM0U
Regards!!!