Google
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER · Question #3
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Question #3: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to reveal the answer and full explanation for question #3. The question stem and answer options stay visible for context.
Question
Your organization uses Google Security Operations (SecOps). You need to identify the most commonly occurring processes and applications across your organization's large number of servers so you can implement baselines and exclusion lists on a regular basis. You want to use the most efficient approach. What should you do?
Options
- AUse the UDM lookup feature to identify relevant process-related UDM fields and values.
- BRun a UDM search, and review aggregations for relevant process-related UDM fields.
- CReview the Google SecOps SIEM Rules & Detections, and identify the most common processes
- DGenerate a Google SecOps SIEM dashboard based on relevant UDM fields, such as processes,
Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER questions. Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.