Which scenario should the Incident Responder copy a suspicious file to the ATP file store?

– by 0

An Incident Responder needs to remediate a group of endpoints but also wants to copy a potentially suspicious file to the ATP file store.
In which scenario should the Incident Responder copy a suspicious file to the ATP file store?
A. The responder needs to analyze with Cynic
B. The responder needs to isolate it from the network
C. The responder needs to write firewall rules
D. The responder needs to add the file to a whitelist

Download Printable PDF. VALID exam to help you PASS.

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.