19.2 Splunk Enterprise Security

Question 1

While SIEM products such as Splunk ES provide many monitoring benefits, organizations are now integrating ____________ into their businesses to provide additional protection.

Answer 1

While SIEM products such as Splunk ES provide many monitoring benefits, organizations are now integrating **advanced security monitoring solutions** into their businesses to provide additional protection.

Question 2

The most popular advancements in the information security industry are: (3)

Answer 2

1. User behavior analytics (UBA)
2. User and entity behavior analytics (UEBA)
3. Security orchestration, automation and response (SOAR)

Question 3

______ is a security monitoring tool that uses machine learning, artificial intelligence, and data processing to detect abnormalities in user activity.

Answer 3

**UBA** (User Behavior Analytics) is a security monitoring tool that uses machine learning, artificial intelligence, and data processing to detect abnormalities in user activity.