1. Home
  2. Discussions
  3. EMC
  4. DECS
  5. DES-9131 Discussions
  6. DES-9131 Exam Topic 2 Question 16 Discussion

EMC Specialist - Infrastructure Security Exam DES-9131 Question # 16 Topic 2 Discussion

 EMC Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

EMC Specialist - Infrastructure Security Exam DES-9131 Question # 16 Topic 2 Discussion

DES-9131 Exam Topic 2 Question 16 Discussion:
Question #: 16
Topic #: 2

The network security team in your company has discovered a threat that leaked partial data on a compromised file server that handles sensitive information. Containment must be initiated and addresses by the CSIRT.

Service disruption is not a concern because this server is used only to store files and does not hold any critical workload. Your company security policy required that all forensic information must be preserved.

Which actions should you take to stop data leakage and comply with requirements of the company security policy?
A.

Disconnect the file server from the network to stop data leakage and keep it powered on for further

analysis.

B.

Shut down the server to stop the data leakage and power it up only for further forensic analysis.

C.

Restart the server to purge all malicious connections and keep it powered on for further analysis.

D.

Create a firewall rule to block all external connections for this file server and keep it powered on for further analysis.

Get Premium DES-9131 Questions
Actual exam question for EMC DES-9131 exam by Phoenix1557 at Aug 7, 2025, 11:32:15 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next