Valid Security-Operations-Engineer Dumps shared by EduDump.com for Helping Passing Security-Operations-Engineer Exam! EduDump.com now offer the newest Security-Operations-Engineer exam dumps, the EduDump.com Security-Operations-Engineer exam questions have been updated and answers have been corrected get the newest EduDump.com Security-Operations-Engineer dumps with Test Engine here:
You are writing a Google Security Operations (SecOps) SOAR playbook that uses the VirusTotal v3 integration to look up a URL that was reported by a threat hunter in an email. You need to use the results to make a preliminary recommendation on the maliciousness of the URL and set the severity of the alert based on the output. What should you do? (Choose two.)
Correct Answer: B,E
Use the number of detections returned in the VirusTotal JSON response in a conditional statement to programmatically determine the severity of the alert. This quantifies the threat level based on multiple vendor detections. Implement a conditional statement to classify the URL as suspicious or benign based on the VirusTotal results. This enables the playbook to provide a preliminary recommendation and guide subsequent analyst actions.