Which definition describes the main purpose of a Security Information and Event Management solution ?
- a database that collects and categorizes indicators of compromise to evaluate and search for potential security threats
- a monitoring interface that manages firewall access control lists for duplicate firewall filtering
- a relay server or device that collects then forwards event logs to another log collection device
- a security product that collects, normalizes, and correlates event log data to provide holistic views of the security posture
Exam with this question: CCNA SECFND 210-250 Dumps – Certification Practice Exam Answers
Please login or Register to submit your answer