Valid CV0-003 Dumps shared by ExamDiscuss.com for Helping Passing CV0-003 Exam! ExamDiscuss.com now offer the newest CV0-003 exam dumps, the ExamDiscuss.com CV0-003 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com CV0-003 dumps with Test Engine here:
Which of the following actions should a systems administrator perform during the containment phase of a security incident in the cloud?
Correct Answer: B
Configuring a firewall rule to block the traffic on the affected instance is what the administrator should perform during the containment phase of a security incident in the cloud. A security incident is an event or situation that affects or may affect the confidentiality, integrity, or availability of cloud resources or data. A security incident response is a process of managing and resolving a security incident using various phases, such as identification, containment, eradication, recovery, etc. The containment phase is where the administrator tries to isolate and prevent the spread or escalation of the security incident. Configuring a firewall rule to block the traffic on the affected instance can help to contain a security incident by cutting off any communication or interaction between the instance and other systems or networks, which may stop any malicious or unauthorized activity or access.