Google
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER · Question #86
PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER Question #86: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to reveal the answer and full explanation for question #86. The question stem and answer options stay visible for context.
Question
You have identified a new threat actor group that has several IOCs in Google Threat Intelligence. You want to use some of these IOCs in several detection rules in Google Security Operations (SecOps) to help identify suspicious activity. You want to use the most effective approach. What should you do?
Options
- AIdentify the detection rules that apply to the new IOCs, and update the YARA-L logic to reference
- BAdd the IOCs to a new or existing reference list, and update the YARA-L logic of detection rules
- CSave the IOCs in a new collection in Google Threat Intelligence. Share this list with other
- DConfigure a new data feed in Google SecOps that includes the IOCs. Update the YARA-L logic to
Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER questions. Unlock PROFESSIONAL-SECURITY-OPERATIONS-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.