New Release: Earn Rewards by referring new users! You can earn rewards redeemable for discounts on Vouchers and Memberships!

Free CompTIA Security+ SY0-701 Practice Question

An organization has deployed a Unified Threat Management (UTM) device to consolidate multiple security functions. While reviewing security logs, it is noted that a specific alert keeps reoccurring, and it has been determined to be a false positive. In order to improve the efficiency of the security operations, what should be done to handle this situation without compromising the actual threat detection capability of the UTM?

  • Perform alert tuning specific to the false positive condition.

  • Increase the sensitivity of the UTM to capture more events.

  • Disable the alert to prevent further false positives.

  • Manually review all alerts generated by the UTM.

This question's topic:
CompTIA Security+ SY0-701 / 
Security Operations
Your Score:

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Pass using Crucial? Post on Social Media and get a $15 Account Credit! Rules apply. Hide these
SAVE $49
CompTIA Security+ Voucher (SY0-701)
$404.00 $355.00