SSCP Risk Identification, Monitoring, and Analysis • Set 3
SSCP Risk Identification, Monitoring, and Analysis Practice Test 3 — 15 questions with explanations. Free, no signup.
A security analyst is reviewing logs from a SIEM and notices multiple failed login attempts for a privileged account from an IP address in a foreign country, followed by a successful login after hours. Which type of security monitoring tool would be most effective at detecting this pattern as anomalous behavior based on user baseline?