Which source provides reports of vulnerabilities in software and hardware to a Security Operations Center?
A. Analysis Center
B. National CSIRT
C. Internal CSIRT
D. Physical Security
Which source provides reports of vulnerabilities in software and hardware to a Security Operations Center?
A or c?
From Cisco SECOPS
Vendor teams handle reports of vulnerabilities in their software or hardware products. They may work within the organization to determine if their products are vulnerable and to develop remediation and mitigation strategies. A vendor team may also be the internal CSIRT for a vendor organization. For example, the Cisco Product Security Incident Response Team (PSIRT) is a dedicated global team that manages the receipt, investigation, and public reporting of security vulnerability information related to Cisco products and networks. Cisco PSIRT provides security advisories and security responses.
Answer should be C, Internal CSIRT.
i think the answer is Physical Security…Why??
lookiing at the fact that this report is going to the SOC…I will put it this way…the SOC is receiving a report…from which they will carry thier remedyiation action….from there we will start to plan on the Internal CSIRT…this team also rely on such information – Physical Security for software and Hardware…
but at the end the answers are all correct but the best one is needed!!!!
#my Thoughts….
Lets not foget most often..the SOC comes before the CSIRT…actually the question is asking for the source of vulnerabilities of software and hardware…..I think we all getting it now!!
correct answer = A
https://www.cisecurity.org/about-us/jobs/security-operations-center-soc-analyst/
The answer is C, since vendor teams could also be the internal CSIRT
I say C
from CISCO SecOps:
The primary mission of a CSIRT is to help ensure company, system, and data preservation by performing comprehensive investigations into computer security incidents, and to contribute to the prevention of such incidents by engaging in threat assessment and detection, mitigation planning, incident trend analysis, and security architecture review.
So may be “C”
Most likely A not C – read the question
C. Vendor teams handle reports of vulnerabilities in their software or hardware products. They
may work within the organization to determine if their products are vulnerable and to develop
remediation and mitigation strategies. A vendor team may also be the internal CSIRT for a
vendor organization. For example, the Cisco Product Security Incident Response Team
(Cisco PSIRT) is a dedicated, global team that manages the receipt, investigation, and public
reporting of security vulnerability information related to Cisco products and networks. Cisco
PSIRT provides security advisories and security responses.Incident response
providers offer incident handling services as a for-fee service to other organizations.