Implementing Cisco Network Security (IINS, legacy) — Question 97

Which two functions can SIEM provide? (Choose two.)

Answer options

• A. dual-factor authentication
• B. proactive malware analysis to block malicious traffic
• C. centralized firewall management
• D. correlation between logs and events from multiple systems
• E. event aggregation that allows for reduced log storage requirements

Correct answer: D, E

Explanation

The correct answers are D and E because SIEM systems are designed to correlate logs and events from different sources (D) and to aggregate events, which helps in minimizing log storage needs (E). Options A, B, and C do not align with the primary functions of SIEM, as they pertain to other security measures or management tools.