CAS-004 • Timed Practice Test 5
This is a timed practice session. You have 10 minutes to answer 10 questions — approximately 1 minute per question, matching real CAS-004 exam pace. Answer every question before time expires.
Time remaining
10:00
Exam-pace drill
Allow 1 minute per question. On the real CAS-004 exam you have approximately 72 seconds per question — this session trains you to maintain that pace under pressure.
A security engineer is configuring a SIEM and wants to reduce false positives while ensuring that real attacks are detected. Which of the following approaches would best achieve this balance?