nerdexam
Google

PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER · Question #38

PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Question #38: Real Exam Question with Answer & Explanation

The correct answer is A. Implement case tagging within Google SecOps and apply a unique tag (e.g., PenTest) to all. The most effective and efficient way is to implement case tagging in Google SecOps and apply a unique tag (e.g., "PenTest") to all cases tied to penetration test activity. Tags allow easy filtering, monitoring, and reporting, ensuring penetration test cases are clearly distinguis

Question

Your organization is conducting a penetration test. The CISO has asked you to implement a real- time method to track cases that originate from the penetration test, and clearly differentiate these cases from other security incidents. You need to recommend the most effective and efficient approach to achieve this goal in Google Security Operations (SecOps). What should you do?

Options

  • AImplement case tagging within Google SecOps and apply a unique tag (e.g., PenTest) to all
  • BCreate a dashboard that is connected to the Google SecOps data lake. Use pre-built templates to
  • CCreate a custom Google SecOps SOAR playbook that automatically extracts case metadata,
  • DConfigure a custom alert rule that triggers a high-severity alert for all activity originating from the

Explanation

The most effective and efficient way is to implement case tagging in Google SecOps and apply a unique tag (e.g., "PenTest") to all cases tied to penetration test activity. Tags allow easy filtering, monitoring, and reporting, ensuring penetration test cases are clearly distinguished from real security incidents without requiring custom dashboards or additional playbooks.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Practice