What is a difference between SOAR and SIEM?

• A.SOAR platforms are used for threat and vulnerability management, but SIEM applications are not
• B.SIEM applications are used for threat and vulnerability management, but SOAR platforms are not
• C.SOAR receives information from a single platform and delivers it to a SIEM
• D.SIEM receives information from a single platform and delivers it to a SOAR

Comment: *

Name: *

Email: *

Verification: *

What is the impact of encryption?

• A.Data is unaltered and its integrity is preserved
• B.Data is secure and unreadable without decrypting it
• C.Confidentiality of the data is kept secure and permissions are validated
• D.Data is accessible and available to permitted individuals

Comment: *

Name: *

Email: *

Verification: *

Which two elements of the incident response process are stated in NIST Special Publication 800-61 r2?
(Choose two.)

• A.detection and analysis
• B.post-incident activity
• C.vulnerability management
• D.risk assessment
• E.vulnerability scoring

Comment: *

Name: *

Email: *

Verification: *

When trying to evade IDS/IPS devices, which mechanism allows the user to make the data incomprehensible without a specific key, certificate, or password?

• A.fragmentation
• B.pivoting
• C.encryption
• D.stenography

Comment: *

Name: *

Email: *

Verification: *

How does agentless monitoring differ from agent-based monitoring?

• A.Agent-based has a possibility to locally filter and transmit only valuable data, while agentless has much higher network utilization
• B.Agent-based monitoring has a lower initial cost for deployment, while agentless monitoring requires resource-intensive deployment.
• C.Agentless can access the data via API. while agent-base uses a less efficient method and accesses log data through WMI.
• D.Agent-based monitoring is less intrusive in gathering log data, while agentless requires open ports to fetch the logs

Comment: *

Name: *

Email: *

Verification: *