Exam CISM topic 1 question 617 discussion

If you don't have overall security view into all your assets how can you protect them? It is a much greater challenge than synchronizing clocks

Well, SOC relies on SIEM and other automation and aggregation tools. If time is off on the devices around the network, then those tools cannot do their job effectively enough or at all. So I'd say it's C. Although, decentralized datacenter would also be a problem since they would not have it integrated into monitoring infrastructure. But then again, I'm assuming too much about the question/scenario, which is wrong approach for the exam.

c is the best answer

C. Log synchronization is critical for correlation and analysis in a SOC. If system clocks are not synchronized, it makes it challenging to correlate events across systems, potentially leading to delayed breach detection. Time discrepancies can hinder the analysis of a security incident's timeline.

A, Since its Cloud hardware vulnerabilities we wont be able to find unless they inform us

C is the correct answer .

A. An organization has a decentralized data center that uses cloud services.

team, the greatest problem, among this answers, is the lack of integration, some security systems and devices may not be fully integrated, making it difficult to correlate and analyze data from multiple sources. So, option A.