Fortinet Exam NSE7_OTS-7.2 Topic 1 Question 12 Discussion

Actual exam question for Fortinet's NSE7_OTS-7.2 exam

Question #: 12
Topic #: 1

An administrator wants to use FortiSoC and SOAR features on a FortiAnalyzer device to detect and block any unauthorized access to FortiGate devices in an OT network.

Which two statements about FortiSoC and SOAR features on FortiAnalyzer are true? (Choose two.)

AYou must set correct operator in event handler to trigger an event.

BYou can automate SOC tasks through playbooks.

CEach playbook can include multiple triggers.

DYou cannot use Windows and Linux hosts security events with FortiSoC.

Show Suggested Answer

Suggested Answer: A, D, E

by Marget at Jun 18, 2024, 03:09 AM

Limited Time Offer

25%

Off

Get Premium NSE7_OTS-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Mica

4 days ago

I think option B is the correct answer. Automating SOC tasks through playbooks seems like a key feature of FortiSoC and SOAR.

upvoted 0 times

...

Charlette

6 days ago

I believe option C is also true, as playbooks can have multiple triggers for different scenarios.

upvoted 0 times

...

Lilli

7 days ago

I agree, automation can help improve efficiency and response time.

upvoted 0 times

...

Yen

8 days ago

I think option B is true because automation is key in SOC tasks.

upvoted 0 times

...