🔥 3-day streak
Professional Security Operations Engineer28 / 241
Question 28 of 241

Your SOC leadership wants a single, defensible way to report which adversary behaviors the detection program can currently observe, and to prioritize where to invest engineering effort next quarter. You maintain roughly 400 active detection rules in Google SecOps. Which approach BEST communicates detection coverage and highlights meaningful gaps to leadership?

Reviewed for accuracy · Report an issueNext question