While filling out the After Actions Report, an Incident Response Team noted that improved log monitoring could help detect future breaches. What are two examples of how an organization can improve log monitoring to help detect future breaches? (Choose two.)
A. Periodically log into the ATP manager and review only the Dashboard.
B. Implement IT Analytics to create more flexible reporting.
C. Dedicate an administrator to monitor new events as they flow into the ATP manager.
D. Set email notifications in the ATP manager to message the Security team when a new incident is occurring.
E. Implement Syslog to aggregate information from other systems, including ATP, and review log data in a single console.
|
Download Printable PDF. VALID exam to help you PASS. |
 |