CAS-005 · Question #422
CAS-005 Question #422: Real Exam Question with Answer & Explanation
The correct answer is C: SOAR. A SOAR platform is explicitly built to integrate via APIs with your existing security tools (EDR, SIEM, firewalls, ticketing systems, etc.), orchestrate automated workflows, and apply rich, customizable controls (playbooks, role-based access, audit logging). It’s also one of the
Question
After the latest risk assessment, the Chief Information Security Officer (CISO) decides to meet with the development and security teams to find a way to reduce the security task workload. The CISO would like to: - Have a solution that uses an API to communicate with other security tools. - Use the latest technology possible. - Have the highest controls possible on the solution. Which of following is the best option to meet these requirements?
Options
- AEDR
- BCSP
- CSOAR
- DCASB
Explanation
A SOAR platform is explicitly built to integrate via APIs with your existing security tools (EDR, SIEM, firewalls, ticketing systems, etc.), orchestrate automated workflows, and apply rich, customizable controls (playbooks, role-based access, audit logging). It’s also one of the newest “X as a Service” technologies in the market for reducing manual security tasks and streamlining incident response.
Community Discussion
No community discussion yet for this question.