A group of company-owned endpoints were infected by ransomware via phishing email. Which two stakeholders must be involved in the containment phase? (Choose two.)
The two stakeholders that must be involved in the containment phase are:
**C. Owners of the infected endpoints**
**D. Incident Response Team Engineers**
### Explanation:
- **C. Owners of the infected endpoints:** These individuals or teams are directly responsible for the affected assets. They need to collaborate in taking actions such as disconnecting devices from the network, applying necessary containment measures, or providing access to facilitate incident response.
- **D. Incident Response Team Engineers:** These are the technical experts responsible for identifying the scope of the infection, executing containment strategies (e.g., isolating systems or applying controls), and preventing further spread of ransomware within the environment.
Other stakeholders, such as the Chief Information Security Officer (B), may provide oversight and policy alignment, but their involvement is not critical to the hands-on containment phase.
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Hellome123
2 weeks, 3 days ago