Which of the following would BEST allow a security analyst to have this ability?

SY0-601 V2 0 Comments

A security analyst needs to be able to search and correlate logs from multiple sources in a single tool.

Which of the following would BEST allow a security analyst to have this ability?
A . SOAR
B. SIEM
C. Log collectors
D. Network-attached storage

Answer: B

Explanation:

SIEM event correlation is an essential part of any SIEM solution. It aggregates and analyzes log data from across your network applications, systems, and devices, making it possible to discover security threats and malicious patterns of behaviors that otherwise go unnoticed and can lead to compromise or data loss.

Latest SY0-601 Dumps Valid Version with 396 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download SY0-601 PDF     SY0-601 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments