Security assessments Flashcards
What is a syslog?
A standard for message logging
What format does a central log collector inside a SIEM expect logs to be sent to it in?
Syslog format
What is UEBA in regards to analyzing data?
User and Entity Behavior Analytics
An example of this would be a human capturing something that a SIEM or DLP system may have missed.
What is sentiment Analysis?
An example of using sentiment analysis would be paying attention (either programatically or normally) to what the general sentiment around your company looks like on social media. If they hate you they hack you more.
What is SOAR?
Security orchestration, automation, and response.
When looking at SOAR vs. SIEM, both aggregate security data from various sources, but the locations and quantity of information being sourced are different. While SIEM will ingest various log and event data from traditional infrastructure component sources, a SOAR takes in all that and more.
