What is an essential function of SIEM?
- forwarding traffic and physical layer errors to an analysis device
- providing 24x7 statistics on packets flowing through a Cisco router or multilayer switch
- monitoring traffic and comparing it against the configured rules
- providing reporting and analysis of security events
Explanation: SIEM provides real-time reporting and analysis of security events. SIEM provides administrators with details on sources of suspicious activity such as user information, device location, and compliance with security policies.
Exam with this question: CCNA Cyber Ops Practice Final Exam Answers
Exam with this question: CyberOps Associate (Version 1.0) - Module 15: Network Monitoring and Tools Quiz Answers
Please login or Register to submit your answer