Security Operations Essentials Word Search
MediumFind each operations concept hidden in the grid.
X
K
D
A
K
O
O
B
Y
A
L
P
T
Q
M
D
I
C
D
N
J
X
F
H
V
G
L
J
E
A
D
A
N
H
A
R
D
E
N
I
N
G
I
Q
D
G
J
S
O
R
F
G
R
G
X
I
S
U
T
K
O
R
P
H
I
N
S
J
Q
Y
G
G
Q
O
I
Z
M
P
E
B
T
R
T
U
I
G
G
I
C
E
J
C
O
X
S
O
N
W
G
H
O
Y
K
L
R
D
H
F
J
O
I
A
E
X
E
L
G
Z
S
M
J
A
U
O
A
F
L
R
T
P
V
F
R
C
B
F
D
T
G
R
C
W
R
D
E
R
S
L
S
Y
C
E
R
P
T
H
F
O
P
J
R
P
T
H
Q
G
M
I
R
G
N
I
H
C
T
A
P
L
I
G
G
T
A
Q
D
Y
U
P
A
Y
L
R
R
F
A
Q
V
G
I
L
S
J
U
T
D
P
E
L
J
C
E
W
E
L
G
N
I
R
O
T
I
N
O
M
M
Drag across letters, or tap the first and last letter. On a keyboard, use arrows + Enter.
Advertisement
Terms in this set
- Patching Applying updates to fix vulnerabilities, bugs, or add features.
- Hardening Reducing attack surface by removing unneeded services, accounts, and features.
- Logging Recording events from systems, applications, and network devices for monitoring and forensics.
- Monitoring Continuous observation of systems, networks, and identities for signs of compromise or misuse.
- SIEM Security Information and Event Management — centralizes log collection, correlation, and alerting.
- SOAR Security Orchestration, Automation, and Response — automates and connects security tools and workflows.
- Dashboard A visual summary of security signals — alerts, metrics, threats — used by analysts and leaders.
- Retention How long data — especially logs — is kept before being archived or destroyed.
- DLP Data Loss Prevention — detects and blocks sensitive data from leaving the organization.
- Triage Initial sorting of alerts or incidents by severity and impact to focus response.
- Playbook A step-by-step procedure that responders follow for a specific incident type.