🔥 3-day streak
ISC2 CCSP — Certified Cloud Security Professional106 / 124
Question 106 of 124
A SOC team at a healthcare company runs workloads across multiple IaaS accounts in a single public cloud provider. They need to centralize security telemetry — control-plane API activity, guest OS logs, and network flow logs — into their SIEM for real-time monitoring. The cloud provider offers a native, fully managed service that streams these log sources to a subscribed destination without requiring software installation on each instance. The SOC lead wants the most operationally reliable approach that minimizes gaps in control-plane and network-layer coverage. Which approach best meets this requirement?
Reviewed for accuracy · Report an issueNext question