What are the four characteristics of an SOC runbook? (Choose four.)
A. A runbook is a collection of plays, and each play generates a report from some set of data sources.
B. The runbook describes the security architecture and technical details of protective measures.
C. Instead of being a rigid framework that stifles creativity, the open-ended nature of the runbook allows security analysts to document ideas and explore ways of achieving objectives.
D. The runbook is a living document that is always up to the task of handling tomorrow’s security challenges.
E. Plays should also evolve over time as attack methods evolve.
F. The runbook is a fixed set of standard operating procedures that cannot be changed easily.
