New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

PECB ISO-IEC-27001-Lead-Implementer Exam - Topic 1 Question 49 Discussion

Actual exam question for PECB's ISO-IEC-27001-Lead-Implementer exam
Question #: 49
Topic #: 1
[All ISO-IEC-27001-Lead-Implementer Questions]

An organization wants to enable the correlation and analysis of security-related events and other recorded data and to support investigations into information security incidents. Which control should it implement?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Hassie at Sep 19, 2024, 01:04 PM

Limited Time Offer

25%

Off

Get Premium ISO-IEC-27001-Lead-Implementer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Isabella
3 months ago
Agreed, correlation is crucial for effective incident response!
upvoted 0 times
...
Latrice
3 months ago
Surprised that software installation is even an option here.
upvoted 0 times
...
Wendell
3 months ago
Clock synchronization? Not sure how that helps with security incidents.
upvoted 0 times
...
Leanna
4 months ago
I think privileged utility programs are key for this!
upvoted 0 times
...
Peggie
4 months ago
Definitely need to implement logging for security events.
upvoted 0 times
...
Kyoko
4 months ago
I feel like the installation of software on operational systems could lead to vulnerabilities, so it might not be the right choice for this scenario.
upvoted 0 times
...
Rosalyn
4 months ago
Clock synchronization seems important for timestamps, but I don't see how it directly helps with security incident investigations.
upvoted 0 times
...
Farrah
4 months ago
I remember a practice question about security event correlation, and I think it was focused on using specific tools for analysis. Could it be the privileged utility programs?
upvoted 0 times
...
Mila
5 months ago
I think the answer might be related to logging and monitoring, but I'm not entirely sure which control fits best.
upvoted 0 times
...
Carmen
5 months ago
Okay, let me see here. The organization wants to analyze security incidents, so I'm thinking the answer might be A - using privileged utility programs to gather and process the relevant data. That could provide the necessary tools for the correlation and analysis they need.
upvoted 0 times
...
Vesta
5 months ago
Hmm, I'm a bit unsure about this one. The options don't seem to directly address the requirement of enabling correlation and analysis of security events. I'll need to think this through carefully and consider which control would best support those investigative capabilities.
upvoted 0 times
...
Beckie
5 months ago
This question seems straightforward - the organization needs to implement a security control to enable correlation and analysis of security-related events. I think the answer is B, clock synchronization, as that would help ensure all the recorded data has accurate timestamps for proper analysis.
upvoted 0 times
...
Mari
5 months ago
Okay, let's see here. I think the key is finding a way to do the preprocessing in a scalable and efficient manner, so that we can handle the high-throughput prediction requests.
upvoted 0 times
...
Linn
9 months ago
B) Clock synchronization makes the most sense to me. Having consistent timestamps is key for analyzing and investigating security incidents.
upvoted 0 times
...
Dominque
10 months ago
Hah, A) Use of privileged utility programs? That's like asking the fox to guard the henhouse! Definitely not the right answer here.
upvoted 0 times
...
Elina
10 months ago
I was leaning towards C) Installation of software on operational systems, but I can see how that might not be the best control for security incident investigations. B) seems like the more appropriate choice.
upvoted 0 times
Iluminada
8 months ago
It's crucial for investigations to have accurate timestamps for security incidents.
upvoted 0 times
...
Stefany
9 months ago
I agree, having synchronized clocks can help in analyzing the timeline of incidents.
upvoted 0 times
...
Francesco
9 months ago
I think B) Clock synchronization is important for correlating security events.
upvoted 0 times
...
...
Angelyn
10 months ago
I think the answer is B) Clock synchronization. Correlating security events across systems requires accurate time stamps, so clock synchronization is crucial.
upvoted 0 times
Ilene
9 months ago
C: Installation of software on operational systems might be important, but clock synchronization is crucial for accurate time stamps.
upvoted 0 times
...
Ronald
9 months ago
B: Clock synchronization definitely plays a key role in enabling the correlation and analysis of security-related events.
upvoted 0 times
...
Lennie
9 months ago
A: I agree, accurate time stamps are essential for correlating security events.
upvoted 0 times
...
...
Hortencia
10 months ago
I disagree. I believe the organization should install software on operational systems for better analysis of security incidents.
upvoted 0 times
...
Jade
10 months ago
I agree with Theodora. Clock synchronization is important for correlating security-related events.
upvoted 0 times
...
Theodora
10 months ago
I think the organization should implement clock synchronization.
upvoted 0 times
...

Save Cancel