Isaca Exam CRISC Topic 9 Question 72 Discussion

Actual exam question for Isaca's CRISC exam

Question #: 72
Topic #: 9

During implementation of an intrusion detection system (IDS) to monitor network traffic, a high number of alerts is reported. The risk practitioner should recommend to:

Areset the alert threshold based on peak traffic

Banalyze the traffic to minimize the false negatives

Canalyze the alerts to minimize the false positives

Dsniff the traffic using a network analyzer

Show Suggested Answer

Suggested Answer: D

by Isadora at Apr 24, 2024, 01:22 PM

Limited Time Offer

25%

Off

Get Premium CRISC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Leonardo

5 hours ago

Sniff the traffic with a network analyzer? Ooh, now we're getting technical! I bet that'll give us a whole new perspective on what's going on.

upvoted 0 times

...

Dyan

7 days ago

False positives, huh? Time to put on our detective hats and figure out what's triggering all those alerts. Gotta keep that IDS running smoothly!

upvoted 0 times

...

Nobuko

10 days ago

I would also consider B) analyze the traffic to minimize the false negatives. We need to ensure we're not missing any real threats.

upvoted 0 times

...

Harley

12 days ago

I agree with Rebecka. It's important to reduce false positives to focus on real threats.

upvoted 0 times

...

Rebecka

14 days ago

I think the answer is C) analyze the alerts to minimize the false positives.

upvoted 0 times

...

Hortencia

15 days ago

Resetting the alert threshold? Sounds like a quick fix, but I'm not sure that's the best long-term solution. Gotta dig deeper and analyze that traffic!

upvoted 0 times

...