Question 56 of 76 from exam 350-201-CBRCOR: Performing CyberOps Using Cisco Security Technologies

Question 56 of 76 from exam 350-201-CBRCOR: Performing CyberOps Using Cisco Security Technologies

Prev Question Next Question

Question

Alert with, Perform Run indicators Check for ‘Analyze user Allow analyst Ban hostname and IP/domain through GeolP location to to contain/ malicious LOTREIIME: an iP lookups third-party ication Ceternialistt mitigate threats IPs START TO FINISH tools on host

Refer to the exhibit.

An engineer configured this SOAR solution workflow to identify account theft threats and privilege escalation, evaluate risk, and respond by resolving the threat.

This solution is handling more threats than Security analysts have time to analyze.

Without this analysis, the team cannot be proactive and anticipate attacks.

Which action will accomplish this goal?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

A.

Prev Question Next Question