Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25

- Free Preparation Discussions

Fortinet Exam NSE7_OTS-7.2 Topic 1 Question 12 Discussion

Actual exam question for Fortinet's NSE7_OTS-7.2 exam

Question #: 12
Topic #: 1

[All NSE7_OTS-7.2 Questions]

An administrator wants to use FortiSoC and SOAR features on a FortiAnalyzer device to detect and block any unauthorized access to FortiGate devices in an OT network.

Which two statements about FortiSoC and SOAR features on FortiAnalyzer are true? (Choose two.)

AYou must set correct operator in event handler to trigger an event.

BYou can automate SOC tasks through playbooks.

CEach playbook can include multiple triggers.

DYou cannot use Windows and Linux hosts security events with FortiSoC.

Show Suggested Answer

Suggested Answer: A, D, E

by Marget at Jun 18, 2024, 03:09 AM

Limited Time Offer

25%

Off

Get Premium NSE7_OTS-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Sarah

15 days ago

I just hope the exam doesn't ask us to configure a FortiAnalyzer in a real OT network. That sounds like a job for the IT team, not the certification candidates.

upvoted 0 times

...

Thomasena

16 days ago

Wait, can we use FortiSoC to detect unauthorized access to my fridge? Asking for a friend.

upvoted 0 times

...

Layla

18 days ago

Option A is a bit confusing. What kind of 'operator' are they talking about? Sounds a bit technical for a certification exam.

upvoted 0 times

...

Eladia

21 days ago

I agree with option C. Being able to include multiple triggers in a playbook would be really useful for complex security workflows.

upvoted 0 times

...

Derrick

1 months ago

Hmm, I'm not sure about option D. Shouldn't we be able to use security events from other hosts as well, not just FortiGate devices?

upvoted 0 times

Yasuko

4 days ago

C) Each playbook can include multiple triggers.

upvoted 0 times

...

Maurine

20 days ago

B) You can automate SOC tasks through playbooks.

upvoted 0 times

...

Pearline

24 days ago

A) You must set correct operator in event handler to trigger an event.

upvoted 0 times

...

...

Mica

2 months ago

I think option B is the correct answer. Automating SOC tasks through playbooks seems like a key feature of FortiSoC and SOAR.

upvoted 1 times

Sylvia

29 days ago

Yes, it definitely helps in improving efficiency and response time.

upvoted 0 times

...

Lucina

1 months ago

I agree, automating tasks through playbooks is a great feature.

upvoted 0 times

...

...

Charlette

2 months ago

I believe option C is also true, as playbooks can have multiple triggers for different scenarios.

upvoted 0 times

...

Lilli

2 months ago

I agree, automation can help improve efficiency and response time.

upvoted 0 times

...

Yen

2 months ago

I think option B is true because automation is key in SOC tasks.

upvoted 0 times

...