An organization recently experienced multiple breaches that were detected months later. Which of the following would be MOST useful for timely monitoring and analysis going forward?
A.
Threat intelligence information
B.
Security information and event management (SIEM)
ChatGPT
In the context of an organization that experienced multiple breaches detected months later, the most useful tool for timely monitoring and analysis going forward is:
B. Security Information and Event Management (SIEM).
SIEM systems provide real-time analysis of security alerts generated by applications and network hardware. They are designed to collect, store, and analyze security data from various sources within the organization, enabling the IT team to detect unusual patterns or activities that could indicate a security breach. The advantage of a SIEM system is its ability to aggregate data from multiple sources and use advanced analytics to identify potential threats quickly, often in real-time, which is crucial for early detection and response to security incidents.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.CRISC Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Abbey2
10 months ago