Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CCSP > Unit 2: SIEM Review > Flashcards

Unit 2: SIEM Review Flashcards

1
Q

What does SIEM combine?

A

SIEM is a term for software and products services combining security information management (SIM) and security management (SEM)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is long-term data retention critical for?

A

It is critical in forensic investigations as it is unlikely that discovery of a network breach will be at the time of the breach occurring.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What type of attacks do cloud-based SIEM services have trouble recognizing?

A

Low-and-slow attacks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does forensics analysis mitigate?

A

Having to aggregate log information in your head or having to search through thousands and thousands of logs.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CCSP (42 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions