An organization wants to gather information on infiltration attempts across multiple segments in an efficient manner, but they are worried about complexity. Which approach best addresses these attempts while easing administrative tasks?
Collect information from perimeter devices and store it separately in multiple locations
Perform scheduled checks for system weaknesses on a frequent basis without real-time storage
Enable constant local checks on all endpoints before sending any information
Use a central aggregator that gathers data from several key points for unified examination
Collecting data from multiple areas through a single aggregator provides visibility into suspicious patterns across the entire environment, reducing both management effort and missed threats. Running real-time scanning on every station creates significant administrative strain. Putting trust solely in peripherals causes gaps, and vulnerability checks performed periodically do not offer timely detection.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a central aggregator and how does it simplify data collection?
Open an interactive chat with Bash
Why is enabling constant local checks on endpoints inefficient?
Open an interactive chat with Bash
What are the risks of relying only on perimeter devices for data collection?