A growing company would like to enhance the ability of its security operations center to detect threats but reduce the amount of manual work required for the security analysts. Which of the following would best enable the reduction in manual work?
The question doesn't say anything about responding to threats. The focus is on identification. SIEM fits better here...Security information and event management (SIEM) is a security solution that helps organizations detect threats before they disrupt business.
SIEM systems are related with log aggregation and correlation from various sources. SOAR provides automation tools which are going to reduce the amount of manual work for the analysts.
This section is not available anymore. Please use the main Exam Page.SY0-601 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Hs1208
Highly Voted 1Â year, 3Â months agochizzuck
Most Recent 9Â months, 1Â week agoLayinCable
11Â months, 1Â week agoscholarbust
11Â months, 2Â weeks agoImjusthere00
1Â year, 1Â month agoAinevknow01
1Â year, 1Â month agosubaie503
1Â year, 1Â month agoTelcoeric
1Â year, 2Â months ago6de42b3
1Â year, 2Â months ago[Removed]
1Â year, 3Â months ago