Fortinet NSE 

NSE 2 Lesson 11 – NSE 2 Security Information & Event Management

Gönderen: admin ,

NSE 2 Lesson 11 – NSE 2 Security Information & Event Management

Question 1

Question text

Which three compliance regulations are legislative and industry-sponsored? (Choose three.)

Select one or more:

  • General Data Protection Regulation (GDPR)
  • Payment Industry Card (PIC) standard
  • Health Insurance Portability and Accountability Act (HIPAA)
  • Health Portability Insurance and Accountability Act (HPIAA)
  • Payment Card Industry (PCI) standard

Question 2

Question text

What does SIEM do primarily?

Select one:

  • Collect, normalize, and store log events and alerts
  • Connect all security tools together into defined workflows
  • Manage network events and alerts
  • Manage network information and alerts

Question 3

Question text

What is one method that SIEM uses to analyze data?

Select one:

  • Decipher encrypted logs and alerts
  • Decipher encrypted data flows
  • Apply security controls
  • Watch for known indicators of compromise (IoC)

Question 4

Question text

Which feature provides SIEM greater visibility into the entire network?

Select one:

  • Sharing of logs by IoTs and BYODs
  • Deciphering encrypted logs and alerts
  • Complying with regulations
  • Analyzing logs and alerts from a single-pane-of-glass

Question 5

Question text

Which two requirements were the motivation for SIEM? (Choose two.)

Select one or more:

  • Remaining competitive
  • Exploiting Big Data
  • Increasing number of alerts
  • Complying to regulations

Question 6

Question text

Which problem was a barrier to the general acceptance of first-generation SIEM?

Select one:

  • Cost to purchase was prohibitive
  • The point solution approach to network security
  • Did not have the features needed by organizations
  • High-level of skill was required

Question 7

Question text

Which three compliance regulations are legislative and industry-sponsored? (Choose three.)

Select one or more:

  • General Data Protection Regulation (GDPR)
  • Payment Industry Card (PIC) standard
  • Payment Card Industry (PCI) standard
  • Health Portability Insurance and Accountability Act (HPIAA)
  • Health Insurance Portability and Accountability Act (HIPAA)

Question 8

Question text

Which problem was a barrier to the general acceptance of first-generation SIEM?

Select one:

  • The point solution approach to network security
  • Did not have the features needed by organizations
  • Cost to purchase was prohibitive
  • High-level of skill was required

Question 9

Question text

Which feature provides SIEM greater visibility into the entire network?

Select one:

  • Deciphering encrypted logs and alerts
  • Complying with regulations
  • Analyzing logs and alerts from a single-pane-of-glass
  • Sharing of logs by IoTs and BYODs

Question 10

Question text

What does SIEM do primarily?

Select one:

  • Manage network information and alerts
  • Manage network events and alerts
  • Collect, normalize, and store log events and alerts
  • Connect all security tools together into defined workflows

Question 11

Question text

Which feature is a characteristic of later SIEMs?

Select one:

  • Collect, normalize, and store log events and alerts
  • User and entity behavior analytics (UEBA)
  • Automatic backups and integrity checking
  • Deciphering encrypted data flows

Question 12

Question text

Which two requirements were the motivation for SIEM? (Choose two.)

Select one or more:

  • Exploiting Big Data
  • Remaining competitive
  • Increasing number of alerts
  • Complying to regulations

Question 13

Question text

What is one method that SIEM uses to analyze data?

Select one:

  • Decipher encrypted logs and alerts
  • Decipher encrypted data flows
  • Apply security controls
  • Watch for known indicators of compromise (IoC)