Your organization has been on G Suite Enterprise for one year. Recently, an admin turned on public link sharing for Drive files without permission from security. Your CTO wants to get better insight into changes that are made to the G Suite environment. The chief security officer wants that data brought into your existing SIEM system. What are two ways you should accomplish this? (Choose two.)
A) Use the Data Export Tool to export admin audit data to your existing SIEM system
B) Use Apps Script and the Reports API to export admin audit data to your existing SIEM system.
C) Use Apps Script and the Reports API to export drive audit data to the existing SIEM system
D) Use the BigQuery export to send admin audit data to the existing SIEM system via custom code
E) Use the BigQuery export to send drive audit data to the existing SIEM system via custom code.
Correct Answer:
Verified
Q15: The executive team for your company has
Q16: Security and Compliance has identified that data
Q17: You are supporting an investigation that is
Q18: You have configured your G Suite account
Q19: In your organization, users have been provisioned
Q21: Your chief compliance officer is concerned about
Q22: Your business partner requests that a new
Q23: Your CISO is concerned about third party
Q24: Your company is in the process of
Q25: The organization has conducted and completed Security
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents