A Security Operations (SecOps) Manager is considering implementing threat hunting to be able to make better decisions on protecting information and assets.
What is the MAIN goal of threat hunting to the SecOps Manager?
A.
Improve discovery of valid detected events
B.
Enhance tuning of automated tools to detect and prevent attacks
C.
Replace existing threat detection strategies
D.
Validate patterns of behavior related to an attack
The primary goal of threat hunting is to improve the discovery of valid detected events by actively searching for threats that evade traditional security tools. Threat hunters analyze patterns and indicators of compromise to uncover hidden threats. Enhancing tool tuning (B) and validating behaviors (D) are outcomes, but the core purpose is improving detection accuracy. Threat hunting complements rather than replaces (C) existing strategies.
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit