CRISC Risk and Control Monitoring and Reporting • Set 2
CRISC Risk and Control Monitoring and Reporting Practice Test 2 — 15 questions with explanations. Free, no signup.
Refer to the exhibit. The SIEM alert triggered, but the security team did not respond because they were investigating another incident. What is the BEST way to prevent such monitoring gaps in the future?
Refer to the exhibit. ``` SIEM Alert: High Severity Rule: Multiple Failed Logins Threshold: 10 failures in 5 minutes Triggered at: 2024-03-15 14:23:45 Source IP: 192.168.1.100 Target: DC01 Event Count: 15 failures in 4 minutes ```