Multiple Choice
A patient views information that is not theirs when they sign in to the hospital's online portal. The patient calls the support center at the hospital but continues to be put on hold because other patients are experiencing the same issue. An incident has been declared, and an engineer is now on the incident bridge as the CyberOps Tier 3 Analyst. There is a concern about the disclosure of PII occurring in real-time. What is the first step the analyst should take to address this incident?
A) Evaluate visibility tools to determine if external access resulted in tampering
B) Contact the third-party handling provider to respond to the incident as critical
C) Turn off all access to the patient portal to secure patient records
D) Review system and application logs to identify errors in the portal code
Correct Answer:
Verified
Correct Answer:
Verified
Q26: <img src="https://d2lvgg3v3hfg70.cloudfront.net/C1178/.jpg" alt=" Refer to the
Q27: <img src="https://d2lvgg3v3hfg70.cloudfront.net/C1178/.jpg" alt=" Refer to the
Q28: An engineer is developing an application that
Q29: A threat actor attacked an organization's Active
Q30: An API developer is improving an application
Q32: <img src="https://d2lvgg3v3hfg70.cloudfront.net/C1178/.jpg" alt=" Refer to the
Q33: <img src="https://d2lvgg3v3hfg70.cloudfront.net/C1178/.jpg" alt=" Refer to the
Q34: An analyst received multiple alerts on the
Q35: A security analyst receives an escalation regarding
Q36: <img src="https://d2lvgg3v3hfg70.cloudfront.net/C1178/.jpg" alt=" Refer to the