Certified SOC Analyst (CSA) — Question 63

Which of the following Windows features is used to enable Security Auditing in Windows?

Answer options

• A. Bitlocker
• B. Windows Firewall
• C. Local Group Policy Editor
• D. Windows Defender

Correct answer: C

Explanation

The Local Group Policy Editor is the correct answer because it allows administrators to configure security policies, including Security Auditing settings. Bitlocker, Windows Firewall, and Windows Defender serve different purposes related to data encryption, network security, and malware protection, respectively, and do not specifically manage Security Auditing.