What is the purpose of correlation within a Security Information and Event Management (SIEM) system?
It involves compiling data from different sources to reduce the volume of log data.
It is the analysis and combination of disparate security events to detect threats.
It refers to standardizing logs and event data from various sources into a common format.
It is used to capture and store all data packets traversing the network.
|Operations and Incident Response
|Architecture and Design
|Governance, Risk, and Compliance
|Attacks, Threats, and Vulnerabilities