20d β’ πββοΈ CISSP
CISSP Practice Question (Domain 7: Security Operations - AI Exam Guidance)
Your SOC receives 8,000 alerts per day, and analysts are burning out. Leadership approves an AI correlation engine to triage alerts before they reach analysts. What should the SOC manager establish FIRST?
A. Thresholds for how many alerts the AI can auto-close without human review
B. A tuning schedule to retrain the model quarterly on new threat data
C. A validation baseline comparing AI triage decisions against analyst decisions
D. Dashboards showing analyst time saved by the AI correlation engine
Come back for the answer tomorrow, or study more now!
1
21 comments
CISSP Practice Question (Domain 7: Security Operations - AI Exam Guidance)
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+45
2
+43
3
+34
4
+32
5
+30
Powered by