A manufacturing company has implemented technical security controls to protect its industrial control systems and production environments. The Security Operations Center (SOC) manager wants to ensure the effectiveness of these controls is constantly evaluated. Which approach best supports this aspect of continuous monitoring and measurement?
Conducting annual penetration testing against the production infrastructure
Performing weekly manual reviews of system logs and security events
Implementing a SIEM system with real-time dashboards displaying metrics on control effectiveness
Scheduling quarterly audits of security controls by the internal audit team
Implementing a Security Information and Event Management (SIEM) system with real-time dashboards would best support continuous monitoring and measurement needs. A SIEM solution aggregates and correlates security event data from multiple sources across the network, providing visibility into the security posture in near real-time. This enables security teams to detect, analyze, and respond to security incidents promptly while also providing the metrics and visualization tools needed to measure control effectiveness continuously.
Scheduled quarterly audits, while valuable for compliance purposes, represent point-in-time assessments rather than continuous monitoring. Annual penetration testing is also a point-in-time evaluation rather than continuous monitoring. Conducting manual log reviews weekly is neither continuous nor efficient enough to provide the real-time insights needed for effective continuous monitoring in a complex industrial environment.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a SIEM system and how does it work?
Open an interactive chat with Bash
What are the benefits of real-time dashboards in a SIEM system?
Open an interactive chat with Bash
What types of data does a SIEM system collect?
Open an interactive chat with Bash
ISC2 CISSP
Security and Risk Management
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access