Kahoots 3

Question 1

How is an alert communicated?

a. ) Email
b. ) Automatic Scripts
c. ) SNMP
d. ) All the above

Answer 1

d.)

Question 2

What are some types of SIEM alerts (select 2)

a. ) Abuse of privileges
b. ) Weather report
c. ) Fraud
d. ) Network monitoring

Answer 2

a.) & c.)

Question 3

Anomalies rely on the previously established baselines to identify deviations T or F

Answer 3

True

Question 4

Who are dashboards main audiences? (Select 2)

a. ) Executives
b. ) Kids
c. ) Vendors
d. ) Technicians/Analysts

Answer 4

a.) & d.)

Question 5

What are the two primary SOAR features?

a. ) Reduce risk levels
b. ) Security Incident response
c. ) Security Operation Automation
d. ) Notify executives

Answer 5

c.)

Question 6

A SIEM is designed to reduce the need for human intervention during IR

Answer 6

False

Question 7

What is the goal of the Triage Process

a. ) Identify that there is a threat
b. ) Prioritize incidents
c. ) Identify potential data at risk
d. ) All of the above

Answer 7

d.)

Question 8

SOAR automates actions upon detection of specific events T or F

Answer 8

True

Question 9

Organizations will use the same playbook for all security incidents T or F

Answer 9

False