Certified in Risk and Information Systems Control (CRISC) — Question 107

Which of the following is the BEST control to detect an advanced persistent threat (APT)?

Answer options

• A. Monitoring social media activities
• B. Conducting regular penetration tests
• C. Utilizing antivirus systems and firewalls
• D. Implementing automated log monitoring

Correct answer: D

Explanation

Implementing automated log monitoring is essential for detecting APTs as it allows for real-time analysis of network activity and alerts for suspicious behavior. While monitoring social media, conducting penetration tests, and using antivirus systems can contribute to security, they do not provide the continuous oversight needed to identify sophisticated threats effectively.