in the operation of a SOC, which system is frequently used to let an analyst select alerts from a pool to investigate?
- syslog server
- registration system
- ticketing system
- security alert knowledge-based system
Explanation: In a SOC, a ticketing system is typically used for a work flow management system.
More Questions: CCNA Cyber Ops (v1.1) – Chapter 1 Exam Answers