Which of the following is the MOST proactive tool or technique that feeds incident response capabilities?

A Chief Information Security Officer (CISO) wants to upgrade an organization’s security posture by improving proactive activities associated with attacks from internal and external threats.

Which of the following is the MOST proactive tool or technique that feeds incident response capabilities?
A . Development of a hypothesis as part of threat hunting
B . Log correlation, monitoring, and automated reporting through a SIEM platform
C . Continuous compliance monitoring using SCAP dashboards
D . Quarterly vulnerability scanning using credentialed scans

View Answer

Answer: A