CompTIA Security+ (SY0-601) — Question 599

A growing company would like to enhance the ability of its security operations center to detect threats but reduce the amount of manual work required for the security analysts. Which of the following would best enable the reduction in manual work?

Answer options

• A. SOAR
• B. SIEM
• C. MDM
• D. DLP

Correct answer: A

Explanation

The correct answer is SOAR, as it automates and orchestrates security processes, significantly reducing manual tasks for analysts. In contrast, SIEM primarily focuses on data collection and analysis, MDM deals with mobile device management, and DLP is centered on data loss prevention, none of which directly minimize manual work in threat detection.