ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 172 discussion

Actual exam question from CompTIA's CS0-003
Question #: 172
Topic #: 1
[All CS0-003 Questions]

A team of analysts is developing a new internal system that correlates information from a variety of sources, analyzes that information, and then triggers notifications according to company policy. Which of the following technologies was deployed?

  • A. SIEM
  • B. SOAR
  • C. IPS
  • D. CERT
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Man001 at March 7, 2024, 11:03 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
HL2020
Highly Voted 1 year ago
Selected Answer: A
Triggering a notification would be a SIEM. If it was changing a firewall rule or other changes then that could be a SOAR.
upvoted 9 times
...
MMK777
Highly Voted 1 year ago
Selected Answer: A
it only triggers notifications so its SIEM
upvoted 6 times
...
SAMIcho
Most Recent 2 months, 1 week ago
Selected Answer: B
It should be B: SIEM collects and correlates logs from multiple sources but does not automate response actions like SOAR.
upvoted 1 times
...
JooJoo0409
2 months, 1 week ago
Selected Answer: A
Must be SIEM
upvoted 1 times
...
hashed_pony
6 months ago
Selected Answer: A
It's a SIEM, because a SIEM aggregates and correlates logs, but doesn't have the ability to apply playbooks and act on triggers like the SOAR does.
upvoted 2 times
...
j904
1 year ago
Selected Answer: A
Yup its A.
upvoted 2 times
...
maggie22
1 year ago
Answer A A SIEM system uses the following to manage security information and events: data collection, consolidation, and correlation, as well as notifications once a single event or an arrangement of events triggers a SIEM rule
upvoted 5 times
...
CyberJackal
1 year ago
Selected Answer: A
That is the textbook definition of a SIEM folks.
upvoted 2 times
...
Bob2021a
1 year, 1 month ago
Selected Answer: B
SOAR-Security Orchestration,Automation& response
upvoted 3 times
...
Man001
1 year, 1 month ago
Selected Answer: B
Their primary focus is on providing real-time analysis of security alerts generated by applications and network hardware. SIEM solutions are often used for log management, threat detection, and incident response.
upvoted 1 times
voiddraco
8 months, 1 week ago
there's another question exactly like this earlier on in the dump but they had the word "automatically" in it and the answer was SOAR, this is SEIM.
upvoted 4 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago