Which feature allows for manual intervention in case a malicious file is detected?

The feature that allows for manual intervention in case a malicious file is detected is isolating the computer. When a device is isolated, it becomes disconnected from the network. This action is critical as it prevents the spread of the potential threat to other systems and gives administrators time to assess the situation without the risk of further infection or compromise.

Isolation typically involves restricting the device’s access to network resources while allowing the administrator to examine and address the incident. This method provides a controlled environment for remediation processes, allowing secure analysis of the threat and the application of necessary mitigation steps.

While quarantining a file is another important action, as it removes the malicious file from active use, isolation extends beyond just file management. It protects the overall network and aids in a more comprehensive response to a detected threat. Similarly, updating policy settings and scanning the system are preventive or corrective actions that do not directly involve manual intervention regarding a specific detected malicious file in the same manner that isolation does.