An engineer discovered a breach, identified the threat's entry point, and removed access. The engineer was able to identify the host, the IP address of the threat actor, and the application the threat actor targeted. What is the next step the engineer should take according to the NIST SP 800-61 Incident handling guide? A. Recover from the threat. B. Analyze the threat. C. Identify lessons learned from the threat. D. Reduce the probability of similar threats. Â Suggested Answer: B This question is in 200-201 Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) Exam For getting Cisco Certified CyberOps Associate Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Cisco. Trademarks, certification & product names are used for reference only and belong to Cisco. The website does not contain actual questions and answers from Cisco's Certification Exam.
Please login or Register to submit your answer