How can an Incident Responder generate events for a site that was identified as malicious but has NOT triggered any events or incidents in ATP?
A) Assign a High-Security Antivirus and Antispyware policy in the Symantec Endpoint Protection Manager (SEPM) .
B) Run an indicators of compromise (IOC) search in ATP manager.
C) Create a firewall rule in the Symantec Endpoint Protection Manager (SEPM) or perimeter firewall that blocks traffic to the domain.
D) Add the site to a blacklist in ATP manager.
Correct Answer:
Verified
Q67: Where can an Incident Responder view Cynic
Q68: An Incident Responder observes an incident with
Q69: What occurs when an endpoint fails its
Q70: Which prerequisite is necessary to extend the
Q71: An Incident Responder wants to investigate whether
Q73: Which action should an Incident Responder take
Q74: Which two tasks should an Incident Responder
Q75: Which threat is an example of an
Q76: Which threat is an example of an
Q77: What does a Quarantine Firewall policy enable
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents