CompTIA CySA+ (CS0-003) — Question 416

A corporation wants to implement an agent-based endpoint solution to help:

• Flag various threats
• Review vulnerability feeds
• Aggregate data
• Provide real-time metrics by using scripting languages

Which of the following tools should the corporation implement to reach this goal?

Answer options

Correct answer: C

Explanation

The correct answer is SOAR (Security Orchestration, Automation, and Response) as it is designed to automate and enhance security operations, including threat detection and data aggregation. DLP (Data Loss Prevention), Heuristics, and NAC (Network Access Control) do not provide the comprehensive capabilities required for real-time metrics and scripting integration as SOAR does.