A security technician is concerned there4 is not enough security staff available the web servers
and database server located in the DMZ around the clock. Which of the following technologies,
when deployed, would provide the BEST round the clock automated protection?
A.
HIPS & SIEM
B.
NIPS & HIDS
C.
HIDS& SIEM
D.
NIPS&HIPS
Security information and event management (SIEM) is an approach to security management that seeks to provide a holistic view of an organization’s information technology (IT) security.
Host based intrusion detection (HIDS) refers to intrusion detection that takes place on a single host system. Currently, HIDS involves installing an agent on the local host that monitors and reports on the system configuration and application activity.
HIPS (Host Intrusion Prevention System) basically is HIDS + stop malware (prevent malware).
Obviously, HIPS is more powerful then HIDS. The question is asking the BEST protection, not the most cost effective solution. I pick D.
1
0
I picked D too.
1
0
Think about if the cost is not a matter, getting Office professional edition is always better than Office standard edition because it has more features. Use a little common sense and you know B is wrong because D is a better option.
1
0
SIEM, NIDS, HIDS are all about monitoring and notifying if violation. NIPS and HIPS are both about doing something, dropping packets or denying the addition of software. I would go with D as well.
1
0