Google
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER · Question #46
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Question #46: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to reveal the answer and full explanation for question #46. The question stem and answer options stay visible for context.
Question
You are responsible for evaluating the level of effort required to integrate a new third-party endpoint detection tool with Google Security Operations (SecOps). Your organization's leadership wants to minimize customization for the new tool for faster deployment. You need to verify that the Google SecOps SOAR and SIEM support the expected workflows for the new third-party tool. You must recommend a tool to your leadership team as quickly as possible. What should you do? (Choose two.)
Options
- ADevelop a custom integration that uses Python scripts and Cloud Run functions to forward logs
- BConfigure a Pub/Sub topic to ingest raw logs from the third-party tool and build custom YARA-L
- CReview the architecture of the tool to identify the cloud provider that hosts the tool.
- DReview the documentation to identify if default parsers exist for the tool, and determine whether
- EIdentify the tool in the Google SecOps Marketplace and verify support for the necessary actions in
Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER questions. Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.