The Chief Information Security Officer (CISO) for an organization wants to develop custom IDS rulesets faster, prior to new rules being released by IDS vendors. Which of the following BEST meets this objective?
A) Identify a third-party source for IDS rules and change the configuration on the applicable IDSs to pull in the new rulesets
B) Encourage cybersecurity analysts to review open-source intelligence products and threat database to generate new IDS rules based on those sources
C) Leverage the latest TCP- and UDP-related RFCs to arm sensors and IDSs with appropriate heuristics for anomaly detection
D) Use annual hacking conventions to document the latest attacks and threats, and then develop IDS rules to counter those threats
Correct Answer:
Verified
Q2: A company has hired an external security
Q3: An infrastructure team is at the end
Q4: A financial consulting firm recently recovered from
Q5: A recent penetration test identified that a
Q6: A systems security engineer is assisting an
Q8: A user workstation was infected with a
Q9: An organization is in the process of
Q10: During a security assessment, an organization is
Q11: To prepare for an upcoming audit, the
Q12: A security incident responder discovers an attacker
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents