What job would require verification that an alert represents a true security incident or a false positive?
- Alert Analyst
- Threat Hunter
- SOC Manager
- Incident Reporter
Explanation: A Cybersecurity Analyst monitors security alert queues and uses a ticketing system to assign alerts to a queue for an analyst to investigate. Because the software that generates alerts can trigger false alarms, one job of the Cybersecurity Analyst would be to verify that an alert represents a true security incident.
Exam with this question: Modules 1 - 2: Threat Actors and Defenders Group Exam
Please login or Register to submit your answer