๐ Home
โบ
SIEM
โบ
Q3
60s
๐
๐ SIEM
Junior
Q3 / 5
SIEM
What is the difference between a SIEM alert and a SIEM event?
A
They are identical โ the terms are used interchangeably
B
An event is a single log entry; an alert is triggered when a correlation rule matches a suspicious pattern of events indicating a potential threat
C
An alert is generated by the firewall; an event is generated by the SIEM
D
Events are low severity; alerts are always critical severity
โ Previous
Select an answer above