Q: 18
Which solution performs security assessments and automatically generates alerts when a
vulnerability is found?
Options
Discussion
Don’t think it’s D since SIEMs collect and correlate logs but don’t actually scan for vulnerabilities. A (CSPM) checks cloud configs, finds issues, and triggers alerts automatically. CWPP is more workload protection, not overall security posture assessment. Pretty sure A fits best here.
CSPM is the one that does continuous assessments and pops alerts for vulnerabilities. A
C/A? D is tempting because SIEMs generate alerts, but they don’t actually assess for vulnerabilities-just analyze events. CSPM (A) does the scanning and alerting for config issues and vulnerabilities. CWPP is more about runtime workload protection, not security posture checks. I think A, but wouldn’t rule out C depending on how you read "assessment".
Option A makes sense since CSPM continuously scans cloud settings for gaps and notifies when it finds something off, like a misconfig or vulnerability. SIEM (D) is more about log analysis, not actual assessment. Not totally certain but A lines up with what I've seen.
I’d say A, had something like this in a mock and CSPM was the answer.
Be respectful. No spam.
