Which of the following represents the BEST option for addressing this concern?

An incident response team is concerned with verifying the integrity of security information and event management (SIEM) events after being written to disk.

Which of the following represents the BEST option for addressing this concern?
A . Time synchronization
B. Log hashing
C. Source validation
D. Field name consistency

Answer: A

Explanation:

Reference: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-92.pdf

Latest CFR-410 Dumps Valid Version with 100 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments