Exam Name: | CompTIA CyberSecurity Analyst CySA+ Certification Exam | ||
Exam Code: | CS0-003 Dumps | ||
Vendor: | CompTIA | Certification: | CompTIA CySA+ |
Questions: | 424 Q&A's | Shared By: | yasmine |
A security analyst is working on a server patch management policy that will allow the infrastructure team to be informed more quickly about new patches. Which of the following would most likely be required by the infrastructure team so that vulnerabilities can be remediated quickly? (Select two).
An attacker recently gained unauthorized access to a financial institution's database, which contains confidential information. The attacker exfiltrated a large amount of data before being detected and blocked. A security analyst needs to complete a root cause analysis to determine how the attacker was able to gain access. Which of the following should the analyst perform first?
An analyst is reviewing a dashboard from the company’s SIEM and finds that an IP address known to be malicious can be tracked to numerous high-priority events in the last two hours. The dashboard indicates that these events relate to TTPs. Which of the following is the analyst most likely using?
Which of the following best describes the goal of a disaster recovery exercise as preparation for possible incidents?