Certified Information Systems Security Professional (CISSP) — Question 272
Which of the following security tools monitors devices and records the information in a central database for further analysis?
Answer options
- A. Antivirus
- B. Host-based intrusion detection system (HIDS)
- C. Security orchestration automation and response
- D. Endpoint detection and response (EDR)
Correct answer: D
Explanation
The correct answer is D, as Endpoint detection and response (EDR) specifically focuses on monitoring endpoints and collecting data for analysis. Options A, B, and C serve different purposes; Antivirus protects against malware, HIDS detects unauthorized changes on a system, and Security orchestration automation and response coordinates security operations but does not primarily focus on data collection from endpoints.