What this objective tests
200-201 Security Monitoring — Key Topics
Monitoring and logging questions test metrics, logs, and traces as the three pillars of observability, and how to choose the right tool for each signal type.
- Metrics (time-series data), logs (events), and traces (distributed request flow) — and which tools handle each.
- Alert types: threshold-based, anomaly-based, and composite — and when each is appropriate.
- Log levels: DEBUG, INFO, WARN, ERROR, CRITICAL — and what should be logged at each level.
- Retention policies, aggregation, and the cost trade-off of storing high-cardinality data.