The correct answer is:
DO
Someone with knowledge of the operation and a security background
Explanation:
1. When it comes to log review, it is essential that the individual conducting the review has knowledge of the operation and a background in security.
2. This is because understanding the system's operations and having security expertise allows the reviewer to identify anomalies, potential security threats, and unauthorized access more effectively.
3. By having someone with knowledge of the operation and a security background perform log reviews, the organization can ensure that any issues or risks are identified and addressed promptly.
4. While certified professionals with experience in logging tools can be beneficial, having someone who understands the system's operations and security aspects is crucial for effective log review and maintaining the system's security integrity.