Netskope Certified Cloud Security Expert (NCCSE) — Question 21

You need to extract events and alerts from the Netskope Security Cloud platform and push it to a SIEM solution.
What are two supported methods to accomplish this task? (Choose two.)

Answer options

• A. Use Cloud Ticket Orchestrator.
• B. Use Cloud Log Shipper.
• C. Stream directly to syslog.
• D. Use the REST API.

Correct answer: B, D

Explanation

The correct answers are B and D because the Cloud Log Shipper is specifically designed for exporting logs to external systems, and the REST API allows for flexible data retrieval. Options A and C are not valid methods for this specific task as they do not directly facilitate the extraction and pushing of events and alerts to a SIEM.