Google
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER · Question #124
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Question #124: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to reveal the answer and full explanation for question #124. The question stem and answer options stay visible for context.
Question
Your organization uses Google Security Operations (SecOps). You discover frequent file downloads from a shared workspace within a short time window. You need to configure a rule in Google SecOps that identifies these suspicious events and assigns higher risk scores to repeated anomalies. What should you do?
Options
- AConfigure a rule that flags file download events with the highest risk score, regardless of time
- BCreate a frequency-based YARA-L detection rule that assigns a risk outcome score and is
- CConfigure a single-event YARA-L detection rule that assigns a risk outcome score and is
- DEnable default curated detections, and use automatic alerting for single file download events.
Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER questions. Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.