Which of the following is the PRIMARY advantage of using an automated security log monitoring tool instead of conducting a manual review to monitor the use of privileged access?
A.
Ease of log retrieval for audit purposes
B.
Ease of storing and maintaining log file
C.
Reduced costs associated with automating the review
D.
Increased likelihood of detecting suspicious activity
The primary advantage of an automated security log monitoring tool over a manual review lies in its ability to enhance detection of suspicious activity. Unlike manual reviews, which struggle with scale and speed, automated tools provide real-time analysis and anomaly detection, critical for monitoring privileged access. The CISA Official Review Manual 28th Edition supports this in Section 5.13, stating that security monitoring tools enable "real-time analysis and alerting for security incidents" (p. 532), and in Section 1.8, noting their role in "detecting patterns and anomalies" (p. 66).
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.CISA Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
46080f2
3 months, 2 weeks ago