A large enterprise acquires another company which uses antivirus from a different vendor. The CISO has requested that data feeds from the two different antivirus platforms be combined in a way that allows management to assess and rate the overall effectiveness of antivirus across the entire organization. Which of the following tools can BEST meet the CISO’s requirement?

A large enterprise acquires another company which uses antivirus from a different vendor. The CISO has requested that data feeds from the two different antivirus platforms be combined in a way that allows management to assess and rate the overall effectiveness of antivirus across the entire organization. Which of the following tools can BEST meet the CISO’s requirement?
A . GRC
B . IPS
C . CMDB
D . Syslog-ng
E . IDS

View Answer

Answer: A

Explanation:

GRC is a discipline that aims to coordinate information and activity across governance, risk management and compliance with the purpose of operating more efficiently, enabling effective information sharing, more effectively reporting activities and avoiding wasteful overlaps. An integrated GRC (iGRC) takes data feeds from one or more sources that detect or sense abnormalities, faults or other patterns from security or business applications.

Incorrect Answers:

B: IPS is a typical sensor type that is included in an iGRC.

C: A configuration management database (CMDB) is defined as a repository that acts as a data warehouse for IT organizations.

D: syslog-ng sends incoming log messages from specified sources to the correct destinations.

E: IDS is a typical sensor type that is included in an iGRC.

References:

https://en.wikipedia.org/wiki/Governance,_risk_management,_and_compliance#lntegrated_governance.2C_risk_and_compliancy

https://wiki.archlinux.org/index.php/Syslog-ng