A new, online file hosting service is being offered. The service has the following security requirements: Threats to customer data integrity and availability should be remediated first. The environment should be dynamic to match increasing customer demands. The solution should not interfere with customers' ability to access their data at anytime. Security analysts should focus on high-risk items. Which of the following would BEST satisfy the requirements?

The correct answer is: C. Implementing a SOAR solution to address known threats A SOAR (Security Orchestration, Automation, and Response) solution is the best choice to satisfy the requirements because it: Prioritizes high-risk items: SOAR automates the prioritization of threats, allowing security analysts to focus on the most critical risks, as specified in the requirements. Supports dynamic environments: SOAR can adapt to changing environments by integrating with various tools and dynamically scaling responses to match increasing demands. Maintains customer data access: Automated responses and streamlined processes ensure quick remediation without significant disruption to customer access. Focuses on remediation of threats to data integrity and availability: SOAR solutions include playbooks to address threats in real time, mitigating risks to critical customer data. Why the other options are incorrect: Expanding the use of IPS and NGFW devices throughout the environment: Incorrect: While IPS (Intrusion Prevention Systems) and NGFW (Next-Generation Firewalls) improve perimeter defense, they do not address the prioritization of threats or reduce analyst workload effectively. Increasing the number of analysts to identify risks that need remediation: Incorrect: Adding more analysts might help manage workload but does not align with the requirement to focus on high-risk items or automate responses for dynamic environments. Integrating enterprise threat feeds in the existing SIEM: Incorrect: Integrating threat feeds enhances visibility but does not automate remediation or prioritize threats, leaving analysts with a potentially overwhelming amount of data to manage manually.

A new online file hosting service is being offered The servi

A new online file hosting service is being offered the servi - CompTIA CAS-005

Question

A new, online file hosting service is being offered. The service has the following security requirements:

Threats to customer data integrity and availability should be remediated first.
The environment should be dynamic to match increasing customer demands.
The solution should not interfere with customers' ability to access their data at anytime.
Security analysts should focus on high-risk items.

Which of the following would BEST satisfy the requirements?

Answers

Expanding the use of IPS and NGFW devices throughout the environment
Increasing the number of analysts to identify risks that need remediation
correct

Implementing a SOAR solution to address known threats
Integrating enterprise threat feeds in the existing SIEM

Explanation

The correct answer is: C. Implementing a SOAR solution to address known threats

A SOAR (Security Orchestration, Automation, and Response) solution is the best choice to satisfy the requirements because it:

Prioritizes high-risk items: SOAR automates the prioritization of threats, allowing security analysts to focus on the most critical risks, as specified in the requirements.
Supports dynamic environments: SOAR can adapt to changing environments by integrating with various tools and dynamically scaling responses to match increasing demands.
Maintains customer data access: Automated responses and streamlined processes ensure quick remediation without significant disruption to customer access.
Focuses on remediation of threats to data integrity and availability: SOAR solutions include playbooks to address threats in real time, mitigating risks to critical customer data.

Why the other options are incorrect:

Expanding the use of IPS and NGFW devices throughout the environment:

Incorrect: While IPS (Intrusion Prevention Systems) and NGFW (Next-Generation Firewalls) improve perimeter defense, they do not address the prioritization of threats or reduce analyst workload effectively.

Increasing the number of analysts to identify risks that need remediation:

Incorrect: Adding more analysts might help manage workload but does not align with the requirement to focus on high-risk items or automate responses for dynamic environments.

Integrating enterprise threat feeds in the existing SIEM:

Incorrect: Integrating threat feeds enhances visibility but does not automate remediation or prioritize threats, leaving analysts with a potentially overwhelming amount of data to manage manually.

View Full Course Content Try our Free Questions

No Payment Cards Needed

CompTIA SecurityX CAS-005 exam

Normally $60

$45/month

Subjects Included

CompTIA SecurityX CAS-005

Additional Features

Over 300 Practice Questions with Answers
Quizzes in every Lesson Provided
Detailed Analysis of Questions with Answers and Explanations
Detailed Notes with Chapters, Topics & Lessons
24/7 Live chat support
24/7 WhatsApp support
One Full Month Access

Get Started

View Other Pricing Plans

CompTIA Prep

CompTIA Cloud+ CV0-004

Start Course Prep

CompTIA Prep

CompTIA Server+ SK0-005

Start Course Prep

Easy way to pass your test within a week with prepsaret

You don’t need one month to study and pass your test.
With Prepsaret, it takes you a few days to grasp all the concepts needed to pass your exams

View Courses Offered