Which two questions can an Incident Responder answer when analyzing an incident in ATP? (Choose two.)
A . Does the organization need to do a healthcheck in the environment?
B . Are certain endpoints being repeatedly attacked?
C . Is the organization being attacked by this external entity repeatedly?
D . Do ports need to be blocked or opened on the firewall?
E . Does a risk assessment need to happen in the environment?
Answer: BE