Google
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER · Question #83
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Question #83: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to reveal the answer and full explanation for question #83. The question stem and answer options stay visible for context.
Question
Your team hunts for threats in a large multinational corporation. You have subscriptions to threat intelligence feeds from third-party sources. You want to implement a solution to continuously compare DNS calls on endpoints to your threat intelligence feeds. What should you do?
Options
- AUse custom modules in Event Threat Detection in Security Command Center (SCC) to correlate
- BPush endpoint logs to BigQuery and use scripts to compare entries to Google Threat intelligence
- CCreate a YARA-L rule in Google Security Operations (SecOps) to track matches between the
- DCreate a YARA-L rule in Google Security Operations (SecOps) to track matches between the
Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER questions. Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.