Implementing automated log monitoring is the best control to detect an advanced persistent threat (APT), which is a stealthy and continuous attack on a target network or system. Automated log monitoring can help to identify anomalous or suspicious activities, such as unusual network traffic, unauthorized access attempts, or data exfiltration, that may indicate the presence of an APT. Utilizing antivirus systems and firewalls, conducting regular penetration tests, and monitoring social media activities are controls that help to prevent or mitigate APTs, but not to detect them. References = Most Asked CRISC Exam Questions and Answers - The Knowledge Academy, question 200.