Question 130
Main Page
What is the goal of developing SIEM use cases?
A. Store more logs
B. Improve incident detection through specific threat models
C. Increase firewall throughput
D. Create colorful dashboards
Answer: Improve incident detection through specific threat models
Use cases help detect threats relevant to your environment by focusing the SIEM’s correlation logic.