02 Apr Practice Test Question-SIEM Automation
Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies.
Which one of the following next generation SIEM capabilities is focused on automating portions of the incident response workflow?
A. Dashboards
B. SOAR
C. UEBA
D. Threat hunting
Correct Answer: B
All of these capabilities are options in advanced security information and event management (SIEM) solutions. However, only security orchestration, automation, and response (SOAR) is focused on automating the incident response workflow.
Interested in more practice test questions?
Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test!
No Comments