CompTIA Security+ (SY0-601) — Question 152

A company was recently breached, Part of the company’s new cybersecurity strategy is to centralize the logs from all security devices. Which of the following components forwards the logs to a central source?

Answer options

• A. Log enrichment
• B. Log aggregation
• C. Log parser
• D. Log collector

Correct answer: D

Explanation

The correct answer is D, Log collector, as it is specifically designed to gather and transmit logs to a central repository. Log enrichment (A) adds contextual information to logs, Log aggregation (B) combines logs from multiple sources but does not necessarily forward them, and Log parser (C) processes logs but does not handle the forwarding aspect.