After detecting an advanced persistent threat (APT), which of the following should be the information security manager’s FIRST step?
A. Notify management
B. Contain the threat
C. Remove the threat
D. Perform root-cause analysis
A. Notify management
B. Contain the threat
C. Remove the threat
D. Perform root-cause analysis