ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-002 All Questions

View all questions & answers for the CS0-002 exam
Go to Exam

Exam CS0-002 topic 1 question 11 discussion

Actual exam question from CompTIA's CS0-002
Question #: 11
Topic #: 1
[All CS0-002 Questions]

Which of the following is a difference between SOAR and SCAP?

  • A. SOAR can be executed faster and with fewer false positives than SCAP because of advanced heuristics.
  • B. SOAR has a wider breadth of capability using orchestration and automation, while SCAP is more limited in scope.
  • C. SOAR is less expensive because process and vulnerability remediation is more automated than what SCAP does.
  • D. SOAR eliminates the need for people to perform remediation, while SCAP relies heavily on security analysts.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Laudy at Sept. 2, 2022, 8:26 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Laudy
Highly Voted 2 years, 9 months ago
Selected Answer: B
I think this was supposed to be a very easy question if you know and understand what these two things are. But these are very different things. But I'll do my best to spell it out. SOAR is used to automatically detect known bad traffic and implement a series of preapproved steps to alleviate the need of more workers. There are many tools that perform this function. https://www.fortinet.com/resources/cyberglossary/what-is-soar Tool Examples: https://geekflare.com/best-soar-tools/ SCAP automates vulnerability management and policy compliance evaluation. It was developed by RHEL and the US Gov't to automate the implementation of STIGs. It scans for those STIGs/VULNs and will patch them automatically based on the defined rules implemented. It was originally a single tool that is now a suite that covers different areas of concern. https://www.youtube.com/watch?v=5PA9r9oaHUY Ultimately, SOAR is a conceptualization that many tools are built for while SCAP is a Tool Suite that has a much smaller scope and almost completely different purpose.
upvoted 12 times
2Fish
2 years, 2 months ago
Agreed.
upvoted 1 times
...
...
R00ted
Highly Voted 2 years, 8 months ago
Selected Answer: B
Security Orchestration, Automation, and Response (SOAR) -A class of security tools that facilitates incident response, threat hunting, and security configuration by orchestrating automated runbooks and delivering data enrichment -SOAR is primarily used for incident response. Security Content Automation Protocol (SCAP) -A NIST framework that outlines various accepted practices for automating vulnerability scanning by adhering to standards for scanning processes, results reporting and scoring, and vulnerability prioritization -SCAP is used to uphold internal and external compliance requirements
upvoted 9 times
NickDrops
2 years, 4 months ago
Best explanation! TY sir!
upvoted 3 times
...
...
gokra
Most Recent 10 months, 2 weeks ago
Agreed.
upvoted 1 times
...
m025
1 year, 5 months ago
Selected Answer: B
It's the only logic
upvoted 1 times
...
DrVoIP
2 years, 3 months ago
B. SOAR has a wider breadth of capability using orchestration and automation, while SCAP is more limited in scope is the difference between SOAR and SCAP. - ChatGPT
upvoted 2 times
...
RobThaBlak
2 years, 4 months ago
I pick A. Because the question explicitly states that the server should be used for one function and the other 3 are used for web but FTP is for file transfer.
upvoted 1 times
...
Cizzla7049
2 years, 8 months ago
Selected Answer: B
SOAR is B
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel