NSE 7 – OT Security 7.2 — Question 31

The operational technology (OT) network analyst runs different levels of reports to investigate threats that exploit the network. The analyst can run these reports on all routers, switches, and firewalls.

Which FortiSIEM reporting method can analysts use to identify threats that exploit image firmware files?

Answer options

• A. Compliance reports
• B. Configuration management database (CMDB) reports
• C. Payment card industry (PCI) logging reports
• D. Threat hunting reports

Correct answer: D

Explanation

The correct answer is D because threat hunting reports are specifically designed to identify potential threats and anomalies, including those related to firmware exploits. Options A, B, and C focus on compliance, configuration management, and PCI logging, which do not directly address the detection of firmware-related threats.