CompTIA Security+ SY0-601 – Question177

Which of the following is a security best practice that ensures the integrity of aggregated log files within a
SIEM?


A.
Set up hashing on the source log file servers that complies with local regulatory requirements.
B. Back up the aggregated log files at least two times a day or as stated by local regulatory requirements.
C. Write protect the aggregated log files and move them to an isolated server with limited access.
D. Back up the source log files and archive them for at least six years or in accordance with local regulatory
requirements.

Correct Answer: C