What is the function of SOAR?
What is the function of SOAR?
SOAR, which stands for Security Orchestration, Automation, and Response, helps with the coordination, execution, and automation of tasks between people and tools for faster response to cybersecurity attacks. SOAR platforms are designed to improve efficiency in handling security operations by automating and orchestrating responses in an integrated manner, enabling quicker and more effective handling of security incidents.
Answer is B Study Guide page 263 definition of SOAR "Security orchestration, automation, and response (SOAR): Technology that helps coordinate, execute, and automate tasks between various people and tools, allowing companies to respond quickly to cybersecurity attacks and improve their overall security posture. SOAR tools use playbooks to automate and coordinate workflows that may include any number of disparate security tools and human tasks"
Isn't the answer suppose to be B? "Security orchestration, automation and response (SOAR) technology helps coordinate, execute and automate tasks between various people and tools all within a single platform." https://www.paloaltonetworks.com/cyberpedia/what-is-soar
Agree with Syfusion, also Study guide p211 Key Idea (of SOAR) SOAR tools ingest aggregated alerts from detection sources (such as SIEMs, network security tools, and mailboxes) before executing automatable, process-driven playbooks to enrich and respond to these alerts.