The network operations center has identified malware, created a ticket within their ticketing system, and assigned the case to the SOC with high-level information. A SOC analyst was able to stop the malware from spreading and identified the attacking host. What is the next step in the incident response workflow?
A. eradication and recovery
B. post-incident activity
C. containment
D. detection and analysis
Correct Answer: A
CISCO 350-201 Exam Question 80
Pass any CISCO Exam with our CISCO All In One Exam Package 99% OFF
Pass any CISCO Exam with our CISCO All In One Exam Package 99% OFF