CAS-005 · Question #78
CAS-005 Question #78: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-005 to reveal the answer and full explanation for question #78. The question stem and answer options stay visible for context.
Question
A cybersecurity architect is reviewing the detection and monitoring capabilities for a global company that recently made multiple acquisitions. The architect discovers that the acquired companies use different vendors for detection and monitoring. The architect's goal is to: - Create a collection of use cases to help detect known threats - Include those use cases in a centralized library for use across all of the companies Which of the following is the best way to achieve this goal?
Options
- ASigma rules
- BAriel Query Language
- CUBA rules and use cases
- DTAXII/STIX library
Unlock CAS-005 to see the answer
You've previewed enough free CAS-005 questions. Unlock CAS-005 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.