A security team at a large, global company needs to reduce the cost of storing data used for performing investigations. Which of the following types of data should have its retention length reduced?
Packet capture data (also known as network traffic captures) is typically very large and can quickly consume significant storage space.
Why reduce retention:
Limited investigative value: While valuable for immediate incident response, the long-term value of most packet captures diminishes rapidly.
High storage costs: Storing large volumes of packet capture data can be expensive.
This is the most detailed type of network data, capturing all traffic on a network segment. It can quickly accumulate large volumes of data, making it the most expensive to store, especially when considering long retention periods
This is because vulnerability scans are less critical for ongoing investigations compared to the other types of data, and their relevance decreases over time as vulnerabilities are remediated
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
ProudFather
2 weeks, 5 days agoe2ba0ff
1 month, 1 week agoFourgehan
1 month, 1 week ago