SNCF — Securing Networks with Firepower — Question 226

Due to an increase in malicious events, a security engineer must generate a threat report to include intrusion events, malware events, and security intelligence events. How is this information collected in a single report?

Answer options

• A. Run the default Firepower report.
• B. Create a Custom report.
• C. Generate a malware report.
• D. Export the Attacks Risk report.

Correct answer: B

Explanation

The correct answer is B, as creating a Custom report allows the security engineer to tailor the report to include specific types of events such as intrusion, malware, and security intelligence. The other options either provide default reporting options or focus on a single type of event, which would not meet the requirement for a comprehensive threat report.