Arcsight Solved MCQ

Arcsight Solved MCQ contain set of 10 MCQ questions for Arcsight MCQ which will help you to clear beginner level quiz.



1. What is ArcSight ESM?
 
a. ArcSight ESM is a Security Information Management (SIM) solution
b. Collects and analyzes security data from heterogeneous devices on your network
c. It provides you a central, real-time view of the security status of all devices
d. All of the Above
 
2. Components of ESM
a. ESM Manager
b. User Interfaces
 c. option A and B
d. None of the above
 
3. Types of Active Channel.
a. Event Channel
b. Rules Channel
c. Resource Channel
 d. All of the Above
4. ArcSight Console Panel consists of Navigator
a. True
b. False
 
5. Options available in case Tab.
a. Queued 
b. Edit
c. Follow-Up 
d. Both A and C
6. Fields in query editor.
 a. Group by 
b. Sort by
c. Managed by
d. Order to
 
7. Standard Rule: Enables all features for rule creation such as multiple event conditions, field aggregation, and rule actions based on different triggers
  a. True
b. False
8. Active List is .
 a. A configurable data store that can hold information derived from events or other sources.
b. Execute commands on the local host
c. Form the interface between devices and components in the network
d. Use standard protocols and proprietary APIs
9. Logical operators used in query editor.
a. Nand
b. Xor
 c. Or
d. Xnor
10.  Data monitors can be added through web interface.
a. True
b. False