In the SecOps Technical Overview & Architecture what programming interface allows you to connect to the APIs without constructing your own tooling?
- SecOps Template System (SOTS)
- SecOps CLI
- Google SecOps Swagger Interface
- SecOps Notebook
Questions
The rule language in Google SecOps was designed for what purpose?
The rule language in Google SecOps was designed for what purpose?
- Metric Visualization
- Threat Detection
- Data Analytics
- Business Intelligence
Simulating a case in Google SecOps is a powerful way to develop and test various objects SOAR, most notably Playbooks. Which of the following actions CANNOT be taken by the analyst using a simulation?
Simulating a case in Google SecOps is a powerful way to develop and test various objects SOAR, most notably Playbooks. Which of the following actions CANNOT be taken by the analyst using a simulation?
- All of these actions are possible.
- Ingest a simulated case as a Test case
- Assign a simulated case
- Choose the environment in which the simulation takes place
Google SecOps supports delivering connectors, actions and API connectivity to 3rd party products in a bundle. What is this bundle called?
Google SecOps supports delivering connectors, actions and API connectivity to 3rd party products in a bundle. What is this bundle called?
- Integration
- Marketplace Tool
- App
- Connector
What is the name for the component of Google SecOps SOAR that acts as a central hub for monitoring and managing the lifecycle of a security incident?
What is the name for the component of Google SecOps SOAR that acts as a central hub for monitoring and managing the lifecycle of a security incident?
- Connectors
- Case
- Alert
- Artifacts
When using the SOAR interface in Google SecOps which view is applied to all cases automatically?
When using the SOAR interface in Google SecOps which view is applied to all cases automatically?
- Default Case View
- Case Summary View
- Alert Case View
- Env Case View