Question

In: Computer Science

Following the merger of two large companies, the newly combined security team is overwhelmed by the...

Following the merger of two large companies, the newly combined security team is overwhelmed by the volume of logs flowing from the IT system; the company's data retention schedule is complicated by requiring detailed logs to be collected for months. Which of the following designs best meet the company's security and retention requirements?

  1. Forward logs to both as I am and a cheaper, long-term storage, and then delete logs from the Siem after 14 days

  2. reduce the volume by disabling logging of routine maintenance activities or failed authentication attempts

  3. send logs to a Siem that correlates security data, and store only the alerts and relevant data arising from the system

  4. maintain both companies logging in Siem Solutions separately, but merge the resulting alerts and reports

Solutions

Expert Solution

Sol:

The correct option is :

(4) :maintain both companies logging in Siem Solutions separately, but merge the resulting alerts and reports

why because , Since two companies are merging together , There will be very much loggin data also available .We can not simply eliminate ones data. Hence we should maintain both companies logging in Security information and event management (SIEM) software . After that we can merge the overall alert and report as together.

The other options are wrong becuse ,

(1) Forward logs to both as I am and a cheaper, long-term storage, and then delete logs from the Siem after 14 days : This method is less efficient and benefit to the scenario. Hence we can neglect this approach

(2) reduce the volume by disabling logging of routine maintenance activities or failed authentication attempts : This activity may lead further complications in system working and security . Also we can not reduce the volume effortlessly.

(3) send logs to a Siem that correlates security data, and store only the alerts and relevant data arising from the system : This method is good , but it does not give an idea about the merging of companies . In other words since we have two companies data , we need to consider about both of it . Hence this option is less suitable.

venereology answered 8 months ago
Next > < Previous

Related Solutions

When a merger does not integrate the two companies’ operations, it is called a _________________.
When a merger does not integrate the two companies’ operations, it is called a _________________.
Horizontal growth can be the merger of two companies at similar levels in the production supply...
Horizontal growth can be the merger of two companies at similar levels in the production supply chain. As mentioned, Delta Airlines acquired Northwest Airlines in 2008 to obtain access to Northwest's Asian markets and those American markets that Delta was not then serving. Another example is Facebook and Instagram, in which both operate in the same industry. They share similar services. Facebook sought to strengthen it's position by using Instagram as an opportunity to grow it's market share, reduce competition,...
Why Coca-Cola combined Costa Coffee? A brief history of the two companies ?
Why Coca-Cola combined Costa Coffee? A brief history of the two companies ?
A large healthcare enterprise in the mid-Atlantic region that was created by a merger owns two...
A large healthcare enterprise in the mid-Atlantic region that was created by a merger owns two acute care hospitals, a rehabilitation center, an outpatient surgical center, and three long-term care facilities. Each of these institutions uses a different EHR system. Admitting privileges extend to 550 physicians, who have office systems that interface with at least one of the acute care EHR systems. The vision is to create an environment to support communication, care coordination, and data sharing across the organization...
Two companies called X plc and Y plc are considering a merger. Financial data for the...
Two companies called X plc and Y plc are considering a merger. Financial data for the two companies are given below:                                                                                             X                           Y Number of shares issued 3m 6m Profit after tax                                                             GHS1.8m                  GHS0.5m Price/earnings ratio                                                          12.0                        10.3 The two companies have estimated that, due to economies of scale, the newly merged company would generate cost savings of GHS200,000 per year. (i) It is suggested initially that 100% of Y PLC’s shares should be exchanged for shares in X...
Antitrust and Mergers Find a current example of a pending merger between two U.S. companies that...
Antitrust and Mergers Find a current example of a pending merger between two U.S. companies that is being evaluated by the federal government to see if it should be allow to move forward or stopped. Current means it should be less than six months old. The merger could have been allowed, disallowed, or still be pending. You should include in your discussion the companies involved, the industry, the government's position and some of the pros and cons of the merger...
Several years​ ago, two companies merged. One of the concerns after the merger was the increasing...
Several years​ ago, two companies merged. One of the concerns after the merger was the increasing burden of retirement expenditures. An effort was made to encourage employees to participate in the​ 401(k) accounts.​ Nationwide, ​% of eligible workers participated in these accounts. The accompanying data table contains responses of employees of the company when asked if they were currently participating in a​ 401(k) account. Complete parts a through d. No is 11 Yes is 19 a. Determine the sample proportion...
(13) Mergers Which two companies do you think would be a good merger? why?
(13) Mergers Which two companies do you think would be a good merger? why?
2. Consider a two-team league in which the teams play 100 games. The large market team...
2. Consider a two-team league in which the teams play 100 games. The large market team gets gate revenue 12w – (w2/20) if it wins w games while the small market team gets 8w – (w2/20) if it wins w games. There are no other sources of revenue. i) Find the equilibrium number of wins for each team and the marginal cost of a win. ii) Suppose that there is revenue sharing, with each team keeping 50% of its revenue...
List three distinct places in the hierarchy of a large company where you could put a computer security team.
List three distinct places in the hierarchy of a large company where you could put a computer security team. Explain the pros and cons of positioning the team in each of these locations.Define the role of a stakeholder in a security project. List five examples of stakeholders from the business, and explain why they have a vested interest in security policies and processes. Suggest how the CISO or the security team can work to build relations with and involve each...
ADVERTISEMENT
Subjects
ADVERTISEMENT
Latest Questions
ADVERTISEMENT