Definitely C. SIEM is the backbone of any security operations center. It helps the team stay on top of potential incidents and respond quickly. Automating incident response would be more like an SOAR tool.
I think the answer is C - real-time monitoring and analysis of security events. SIEM stands for Security Information and Event Management, so it's all about collecting and analyzing security data to detect threats.
Ugh, this SIEM question is tricky. I thought it was about securing cloud apps, but it looks like it's more about monitoring security events. This exam is really trying to test our security knowledge.
upvoted 0 times
...
Log in to Pass4Success
Sign in:
Report Comment
Is the comment made by USERNAME spam or abusive?
Commenting
In order to participate in the comments you need to be logged-in.
You can sign-up or
login
Hector
8 months agoMitsue
8 months agoCristy
8 months agoShawna
8 months ago