01 Mar Practice Test Question-SIEM Tasks
Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies.
Which one of the following is not a normal task of a SIEM?
A. Correlate Records
B. Aggregate Log Entries
C. Identify Trends
D. Block Unwanted Traffic
Correct Answer: D
SIEM platforms are responsible for collecting, aggregating, and correlating log records and using them to identify potential security events and trends. They do not block traffic, as they are a reporting and analysis tool. So, this is our correct answer.
No Comments