Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
The CISSP Official Study Guide states that security logs are specifically used to record access to resources and can help detect malicious activities such as unauthorized access and data theft. These logs are essential for identifying and responding to security incidents.
Therefore, the correct answer is:
C. Security
This information is found on pages 835-836 of the study guide
I would go with D because of data theft. The threat can already be inside your network and would not be detected in intrusion detection. Also security is broader
Should be D.
IDS dont response to attack short of issuing an alert or email. In this context I would say the question is asking for stopping the attack since they added in malwares etc words
SOAR collects security logs and can respond and "security logs" can include system, security, router, firewall, EDR and other logs.
I would say C. Security logs is correct. ID can be either just detection or it can be detection and response, but it doesn't cover malware infection, and data theft as well as a SOAR can.
I'm going with A. Security logs are just that, logs, they won't react in any way. While IPS is a better solution on the network, IDS CAN respond - see pg 414 of the CISSP Study guide - "Until your browser and/or host-based intrusion detection system (HIDS) can detect and respond to push lockers, the only response is to close/terminate the browser and not return to the same URL. Host-based CAN respond in some way.
The type of log collection that is focused on detecting and responding to attacks, malware infection, and data theft is Security log collection. ChatGPT
Security log collection is focused on detecting and responding to attacks, malware infection, and data theft.
Security log collection involves the monitoring and analysis of various system and application logs to identify security-related events, such as failed login attempts, changes to system configurations, and network activity. This type of log collection is critical for identifying and responding to security incidents, such as cyber attacks, malware infections, and data theft.
Definitely A.
https://resources.infosecinstitute.com/certification/logging-monitoring-need-know-cissp/#:~:text=An%20overview%20of%20log%20file&text=Some%20popular%20examples%20of%20log,prevention%20system%20(IPS)%20logs.
The type of log collection that is focused on detecting and responding to attacks, malware infection, and data theft is Security log collection. Therefore, option C, Security, is the correct answer.
Intrusion detection log collection is a type of security log collection that focuses specifically on detecting and preventing unauthorized access to a network or system.
Operational log collection, on the other hand, is focused on monitoring the performance and availability of IT infrastructure, such as servers, applications, and network devices.
Compliance log collection involves collecting and retaining logs to meet regulatory requirements and industry standards, such as PCI DSS, HIPAA, and GDPR.
While all three types of log collection are important, security log collection is the most critical for detecting and responding to security incidents and threats.
I agree with A, IDS can detect and respond to all those provided scenarios. While they cannot "prevent", they can still inform/respond by sending alerts. Page 820 of the CISSP 9th edition official study guide.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Chris
16 hours, 43 minutes agosafri
4 weeks agoCCNPWILL
1 month agohoho2000
3 months, 3 weeks agoGeenHersens
4 months, 2 weeks agopete79
4 months, 4 weeks agoGuardianAngel
5 months agogjimenezf
5 months, 1 week agoGPrep
6 months agoYesPlease
6 months, 2 weeks agobabaseun
1 year, 2 months agojackdryan
1 year, 1 month ago[Removed]
1 year, 3 months agoGoseu
1 year, 3 months agoDelab202
1 year, 3 months agosausageman
1 year, 3 months agoliledag
1 year, 3 months agoBodatiousbob
1 year, 4 months ago