Security Information and Event Management (SIEM) solution provides real-time analysis of security alerts generated by network hardware and applications, which of the following capabilities does this solution have?
Each correct answer represents a complete solution. Choose three.
A.
Retention
B.
Dashboard
C.
Data aggregation
D.
Remanence
E.
Data redundancy
Explanation:
Security Information and Event Management (SIEM) solution is a combination of the formerly different product categories of SIM (security information management) and SEM (security event management). It provides real-time analysis of security alerts generated by network hardware and applications. SIEM solution is also used to log security data and generate reports for compliance purposes.The SIEM capabilities are as follows:
Data aggregation
Correlation
Alerting
Dashboard
Compliance
Retention