Select the type of cybersecurity solution or feature that discovers threats by identifying activity that deviates from a baseline.1 pointSoftware configuration management - SCMUser and entity behavior analytics - UEBAIntegrated development environment - IDEDynamic User List - DUL

Sure, let's break down the question step by step to identify the correct type of cybersecurity solution or feature that discovers threats by identifying activity that deviates from a baseline.

1. Software Configuration Management (SCM):

   • SCM is primarily concerned with tracking and controlling changes in software. It ensures that the software remains consistent and functional as changes are made. It does not specifically focus on identifying threats by monitoring deviations from a baseline.

2. User and Entity Behavior Analytics (UEBA):

   • UEBA focuses on monitoring the behavior of users and entities (like devices) within a network. It establishes a baseline of normal behavior and then identifies deviations from this baseline to detect potential threats. This fits the description given in the question.

3. Integrated Development Environment (IDE):

   • An IDE is a software application that provides comprehensive facilities to computer programmers for software development. It includes tools like a code editor, compiler, debugger, etc. It is not designed to discover threats by identifying deviations from a baseline.

4. Dynamic User List (DUL):

   • A Dynamic User List is typically used to manage and update user lists dynamically based on certain criteria. It is not specifically designed to identify threats by monitoring deviations from a baseline.

Based on the analysis, the correct answer is:

User and Entity Behavior Analytics (UEBA).

Sure, let's break down the question step by step to identify the correct type of cybersecurity solution or feature that discovers threats by identifying activity that deviates from a baseline.

1. Software Configuration Management (SCM):

   • SCM is primarily concerned with tracking and controlling changes in software. It ensures that the software remains consistent and functional as changes are made. It does not specifically focus on identifying threats based on deviations from a baseline.

2. User and Entity Behavior Analytics (UEBA):

   • UEBA focuses on analyzing the behavior of users and entities (like devices) within a network. It establishes a baseline of normal behavior and then identifies deviations from this baseline to detect potential threats. This is exactly what the question is asking for.

3. Integrated Development Environment (IDE):

   • An IDE is a software application that provides comprehensive facilities to computer programmers for software development. It typically includes a code editor, compiler, debugger, and other tools. It is not designed to discover threats based on deviations from a baseline.

4. Dynamic User List (DUL):

   • A DUL is a list that dynamically updates based on certain criteria, often used in access control and management. It does not specifically focus on identifying threats by analyzing deviations from a baseline.

Based on the analysis, the correct answer is:

User and Entity Behavior Analytics (UEBA).