CompTIA Security+ SY0-701 Practice Question
Your organization requires a solution to monitor the health and security status of its endpoints. What kind of solution would you deploy to ensure centralized management and real-time alerting for potential security issues?
Use a centralized log management platform to passively analyze system logs.
Set up a network analyzer to capture and inspect all traffic in and out of the network.
Deploy an agent-based monitoring tool on all endpoints that reports back to a central management console.
Regularly schedule manual security audits of all endpoints to check for software updates and configuration issues.