🔥 3-day streak
CompTIA SecurityX (CAS-005)76 / 120
Question 76 of 120
A security operations manager wants to validate whether the SOC can detect the specific TTPs used by a threat actor known to target their industry. The red team has already demonstrated it can achieve initial access and lateral movement, but the manager is frustrated that detection engineering never improved afterward because the red team report only listed successful compromises without SOC visibility details. Which approach BEST addresses this gap going forward?
Reviewed for accuracy · Report an issueNext question