1.Question 1Which log source records events related to websites, emails, and file shares, as well as password and username requests?1 pointNetworkFirewallReceivingServer2.Question 2Fill in the blank: A security information and _____ management (SIEM) tool is an application that collects and analyzes log data to monitor critical activities in an organization. 1 pointemployeeefficiencyemergencyevent3.Question 3A security professional evaluates a software application by reviewing key technical attributes including response time, availability, and failure rate. What are they using to assess performance?1 pointModelsCloud toolsMetricsIndex standards4.Question 4Fill in the blank: SIEM tools must be configured and _____ to meet each organization's unique security needs.1 pointcustomizedcentralizedreviewedindexed

1.Question 1Which of the following statements correctly describe logs? Select three answers.1 pointSecurity teams monitor logs to identify vulnerabilities and potential data breaches. Outbound requests to the internet from within a network are recorded in a firewall log.Actions such as login requests are recorded in a server log.Connections between devices and services on a network are recorded in a firewall log.2.Question 2What are some of the key benefits of SIEM tools? Select three answers.1 pointEliminate the need for manual review of logsProvide event monitoring and analysisCollect log data from different sourcesSave time3.Question 3Fill in the blank: Software application _____ are technical attributes, such as response time, availability, and failure rate.1 pointSIEM toolsdashboardslogsmetrics4.Question 4A security team chooses to implement a SIEM tool that will be managed and maintained by the organization's IT department, rather than a third-party vendor. What type of tool are they using?1 pointHybridDepartment-hostedCloud-hostedSelf-hosted5.Question 5You are a security professional, and you want to save time by using a SIEM tool that will be managed by a provider and only be accessible through the internet. What type of tool do you choose?1 pointHybridIT-hostedSelf-hostedCloud-hosted6.Question 6Fill in the blank: SIEM tools retain, analyze, and search an organization's _____ to provide security information and alerts.1 pointlog datacloud applicationsdatabasehardware7.Question 7A security analyst receives an alert about hundreds of login attempts from unusual geographic locations within the last few minutes. What can the analyst use to review a timeline of the login attempts, locations, and time of activity?1 pointA SIEM tool dashboard A network protocol analyzer (packet sniffer) A playbookAn operating system8.Question 8Which type of tool typically requires users to pay for usage?1 pointCloud nativeProprietary Self-hostedOpen-source

.Question 1Which of the following statements correctly describe logs? Select two answers.1 pointA business might log each time an employee accesses web-based services.Security professionals use logs to automate tasks.A log is used as a formal guide to incident response.Logs helps identify vulnerabilities and potential security breaches. 2.Question 2Which of the following tasks can be performed using SIEM tools? Select three answers.1 pointImplementing security software programsSaving time by reducing the amount of data to be reviewedAnalyzing filtered events and patternsMonitoring critical activities3.Question 3Fill in the blank: Instead of reviewing pages and pages of logs to determine if there are any new security threats, analysts can use _____ tools, which provide alerts for specific types of threats and risks. 1 pointnetwork protocol analyzer (packet sniffer)programming languageoperating systemsecurity information and event management (SIEM)4.Question 4Fill in the blank: A security team uses a _____ to help them document organizational processes from beginning to end.1 pointgraphplaybooklegendtoolkit5.Question 5As a security analyst, you are monitoring network traffic to ensure that SPII data is not being accessed by unauthorized users. What does this scenario describe?1 pointUsing a network protocol analyzer (packet sniffer)Programming with codeCalculating with formulasGathering data in a spreadsheet6.Question 6What are some key benefits of programming languages? Select all that apply.1 pointComplete repetitive tasks with a high degree of efficiencyCan be used to create a specific set of instructions for a computer to execute tasksExecute repetitive processes very accuratelyTo provide details about any operational action7.Question 7A security team wants to examine logs to understand what is occurring within their systems. Why might they choose Linux to perform this task? Select two answers. 1 pointIt is open source.It is proprietary.It allows for text-based commands by users.It is an efficient programming language.8.Question 8Fill in the blank: Security professionals can use _____ to interact with and request information from a database.1 pointlogsnetwork protocol analyzers (packet sniffers)playbooksSQL9.Question 9What are some key benefits of using Python to perform security tasks? Select all that apply. 1 pointIt saves time. It captures and analyzes data traffic within a network. It clearly maps data.It helps ensure accuracy.

1.Question 1Which tool collects and analyzes log data to monitor critical activities in an organization?1 pointIntrusion detection system (IDS) toolSecurity information and event management (SIEM) toolPlaybookIntrusion prevention system (IPS) tool

Question 6Fill in the blank: SIEM tools are used to search, analyze, and _____ an organization's log data to provide security information and alerts in real-time.1 pointreleaseretainmodifyseparate7.Question 7

1.Question 1What tool is designed to capture and analyze data traffic within a network?1 pointplaybooksecurity information and event management (SIEM)Structured Query Language (SQL)network protocol analyzer (packet sniffer)2.Question 2What type of tool uses dashboards to organize data into categories and allows analysts to identify potential security incidents as they happen?1 pointPythonLinuxnetwork protocol analyzers (packet sniffers)SIEM3.Question 3What can cybersecurity professionals use logs for?1 pointTo select which security team members will respond to an incidentTo identify vulnerabilities and potential security breachesTo research and optimize processing capabilities within a networkTo analyze data traffic within a network 4.Question 4Fill in the blank: A _____ is a manual that provides details about operational actions.1 pointchecklistdirectoryplaybookcase history