200-201 · Question #459
200-201 Question #459: Real Exam Question with Answer & Explanation
The correct answer is B: Data is filtered properly and contains only valid results.. In vulnerability scanning, false positives are findings that are incorrectly flagged as vulnerabilities, and true positives are legitimate vulnerabilities that need to be addressed. By excluding both false positives and true positives from the results, the analyst is left with th
Question
A vulnerability analyst is performing the monthly scan data review. Output data is very big and getting bigger each month. The analyst decides to create a more efficient process to complete the task on time. All false positives and true positives are excluded from the results. The remaining findings will be assigned to a technical team for further remediation. What is the result of such activity?
Options
- AExclusion is not needed, and all data must be remediated.
- BData is filtered properly and contains only valid results.
- CAnalysis is not performed correctly, and it is missing correct data.
- DFalse negatives must also be excluded from the data.
Explanation
In vulnerability scanning, false positives are findings that are incorrectly flagged as vulnerabilities, and true positives are legitimate vulnerabilities that need to be addressed. By excluding both false positives and true positives from the results, the analyst is left with the remaining findings, which represent unresolved or new vulnerabilities that need to be reviewed further by the technical team. This filtering process ensures that the data the team receives is valid and actionable.
Topics
Community Discussion
No community discussion yet for this question.