Splunk Observability Cloud Certified Metrics User — Question 26

A successful Continuous Monitoring initiative involves the entire organization. When an analyst discovers the need for more context or additional information, perhaps from additional data sources or altered correlation rules, to what role would this request generally escalate?

Answer options

• A. SOC Manager
• B. Security Analyst
• C. Security Engineer
• D. Security Architect

Correct answer: C

Explanation

The correct answer is C, Security Engineer, as they are typically responsible for implementing and adjusting the systems needed for data collection and analysis. The SOC Manager oversees operations, the Security Analyst focuses on analysis and response, and the Security Architect is concerned with the overall design and structure of security systems, making them less suited for this specific request.