1. Your SAP system has been hacked. What is the first thing you must do?
Best Answer: d.
Contain the intrusion.
The first thing you must do after discovering that your SAP system has been hacked is to contain the intrusion. Gathering your incident response team must wait. Rooting out the cause of the attack must wait. Within minutes of discovering the attack, the employee who encounters the threat must alert your incident response team and start implementing the first steps outlined in your company’s cybersecurity response plan.
If you do not have a cybersecurity response plan, the staffer who discovers the intrusion must alert your IT and management teams immediately. Your IT staff must then disconnect the affected computer, server or other device from your network. Next, review your on-premise backups and backups in the cloud to make sure they are not compromised.