CompTIA Security+ (SY0-701) — Question 35
A security operations center determines that the malicious activity detected on a server is normal. Which of the following activities describes the act of ignoring detected activity in the future?
Answer options
- A. Tuning
- B. Aggregating
- C. Quarantining
- D. Archiving
Correct answer: A
Explanation
The correct answer is A, Tuning, as it involves adjusting detection systems to reduce false positives, leading to the ignoring of certain alerts. Options B (Aggregating), C (Quarantining), and D (Archiving) do not involve the act of ignoring alerts; instead, they relate to managing data or isolating threats.