CompTIA Security+ (SY0-601) — Question 369

A company needs to centralize its logs to create a baseline and have visibility on its security events. Which of the following technologies will accomplish this objective?

Answer options

• A. Security information and event management
• B. A web application firewall
• C. A vulnerability scanner
• D. A next-generation firewall

Correct answer: A

Explanation

The correct answer is A, Security information and event management (SIEM), as it is designed to aggregate and analyze security logs and events from various sources to provide insights into security incidents. The other options, such as web application firewalls, vulnerability scanners, and next-generation firewalls, focus on different aspects of security and do not specifically centralize log management for visibility and baseline creation.