P2150-870試験無料問題集（40題）「IBM Technical Sales Foundations for IBM Security Intelligence and Analytics V1 認定」

P2150-870試験無料問題集「IBM Technical Sales Foundations for IBM Security Intelligence and Analytics V1 認定」

出題：1

Which is the most common formatused to send event data to a SIEM?

A. Syslog

B. LEEF

C. NetFlow

D. JSON

正解：C 解答を投票する

出題：2

What type of appliance is a 3105?

A. All in One OR Console

B. Flow Collector

C. Event Collector

D. Event Processor

正解：B 解答を投票する

出題：3

Which question(s) con QRadar help customers answer concerning the security of their network?

A. What is being attacked?

B. What is the security impact?

C. Who is attacking?

D. All the above

E. When are the attacks taking place?

正解：E 解答を投票する

出題：4

How does QRadar Advisor with Watson help security analysts investigate security incidents?

A. It analyzes flow data.

B. It scans systems for vulnerabilities.

C. It analyzes and investigates an offense.

D. It extracts packet data for security investigations.

正解：D 解答を投票する