ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-601 All Questions

View all questions & answers for the SY0-601 exam
Go to Exam

Exam SY0-601 topic 1 question 262 discussion

Actual exam question from CompTIA's SY0-601
Question #: 262
Topic #: 1
[All SY0-601 Questions]

Which of the following typically uses a combination of human and artificial intelligence to analyze event data and take action without intervention?

  • A. TTP
  • B. OSINT
  • C. SOAR
  • D. SIEM
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Granddude at Oct. 11, 2022, 2:44 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Granddude
Highly Voted 2 years, 8 months ago
Selected Answer: C
What is SOAR? SOAR collects data and alerts security teams using a centralized platform similar to SIEM, but SIEM only sends alerts to security analysts. SOAR security, on the other hand, takes it a step further by automating the responses. It uses artificial intelligence (AI) to learn pattern behaviors, which enable it to predict similar threats before they happen. This makes it easier for IT security staff to detect and address threats. https://www.fortinet.com/resources/cyberglossary/what-is-soar
upvoted 16 times
passmemo
2 years, 8 months ago
Agree with C
upvoted 3 times
...
...
ApplebeesWaiter1122
Highly Voted 1 year, 11 months ago
Selected Answer: C
SOAR (Security Orchestration, Automation, and Response) is a cybersecurity technology that integrates security tools, human analysts, and artificial intelligence (AI) to improve the efficiency and effectiveness of incident response processes. SOAR platforms can automate repetitive tasks, analyze event data, and execute predefined actions in response to security incidents, all without requiring manual intervention from analysts. By leveraging AI and automation, SOAR solutions can help security teams handle a large volume of security alerts, streamline incident response workflows, and respond to threats more quickly and accurately. This enables organizations to better manage and mitigate security incidents, reducing the overall impact of cyber threats on their systems and data.
upvoted 5 times
...
NetworkTester1235
Most Recent 1 year, 3 months ago
A SOAR is a SIEM that takes action
upvoted 2 times
...
shaneo007
1 year, 5 months ago
Answer c. Security Orchestration, Automation, and Response.
upvoted 1 times
...
LO353
1 year, 9 months ago
without intervention = automation
upvoted 1 times
...
ronniehaang
2 years, 4 months ago
Selected Answer: C
C. SOAR (Security Operations Automation and Response) typically uses a combination of human and artificial intelligence to analyze event data and take action without intervention. This technology automates manual tasks, such as triage, investigation, and remediation, to improve the speed and efficiency of incident response. By using machine learning algorithms and a knowledge base, SOAR can learn from previous incidents and make more informed decisions, freeing up security personnel to focus on higher-level tasks.
upvoted 1 times
...
Gr3gg3
2 years, 7 months ago
Human and Artificial with no intervention? I think its OSINT
upvoted 1 times
Gr3gg3
2 years, 7 months ago
didnt read the Q properly - take action without intervention = I agree with C
upvoted 2 times
...
...
[Removed]
2 years, 8 months ago
but does it mean without human intervention or artificial intelligence intervention?
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel