nerdexam
Google

PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER · Question #43

PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Question #43: Real Exam Question with Answer & Explanation

The correct answer is B. Configure silent source notifications for Google SecOps collection agents in Cloud Monitoring.. The correct approach is to configure silent source notifications for SecOps collection agents in Cloud Monitoring so that you are alerted if data sources go silent within 15 minutes. Then, create a Cloud Monitoring dashboard to visualize ingestion throughput and parsing errors. T

Question

You are a SOC manager at an organization that recently implemented Google Security Operations (SecOps). You need to monitor your organization's data ingestion health in Google SecOps. Data is ingested with Bindplane collection agents. You want to configure the following: - Receive a notification when data sources go silent within 15 minutes. - Visualize ingestion throughput and parsing errors. What should you do?

Options

  • AConfigure notifications in Cloud Monitoring when ingestion sources become silent in Bindplane.
  • BConfigure silent source notifications for Google SecOps collection agents in Cloud Monitoring.
  • CConfigure silent source alerts based on rule detections for anomalous data ingestion activity in
  • DConfigure automated scheduled delivery of an ingestion health report in the Data Ingestion and

Explanation

The correct approach is to configure silent source notifications for SecOps collection agents in Cloud Monitoring so that you are alerted if data sources go silent within 15 minutes. Then, create a Cloud Monitoring dashboard to visualize ingestion throughput and parsing errors. This leverages native monitoring for Bindplane agents and provides real-time visibility into ingestion

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Practice