FCSS – SOC Analyst 7.4 — Question 7
Which FortiAnalyzer feature uses the SIEM database for advance log analytics and monitoring?
Answer options
- A. Threat hunting
- B. Asset Identity Center
- C. Outbreak alerts
- D. Event monitor
Correct answer: A
Explanation
The correct answer is A, Threat hunting, as it specifically utilizes the SIEM database to perform advanced log analytics and monitoring. The other options, while related to security management, do not focus on the use of the SIEM database for this purpose.