Valid Security-Operations-Engineer Dumps shared by EduDump.com for Helping Passing Security-Operations-Engineer Exam! EduDump.com now offer the newest Security-Operations-Engineer exam dumps, the EduDump.com Security-Operations-Engineer exam questions have been updated and answers have been corrected get the newest EduDump.com Security-Operations-Engineer dumps with Test Engine here:
During a high-priority phishing incident at your company, Google Security Operations (SecOps) created and assigned the case to a Tier 1 analyst. The analyst added email headers and attached the malicious file as evidence but failed to escalate the case, violating an internal SLA of 30 minutes for a phishing response. The delay led to multiple users opening the file before containment actions were initiated. You want to optimize the case management workflow for future high-priority incidents. What should you do?
Correct Answer: C
To ensure timely escalation for high-priority phishing incidents, you should configure a SOAR notification loop that sends escalating alerts to Tier 1 analysts, Tier 2 analysts, and the SOC manager at regular intervals until the case is reassigned or acted upon. This enforces SLA compliance and ensures that delays do not allow threats to propagate, optimizing the case management workflow without relying solely on manual escalation.