Answered

Who should be performing log review?
A O
Only certified, trained log review professionals with a great deal of experience with the logging tool
BO
The internal audit body
CO
External audit providers
DO
Someone with knowledge of the operation and a security background



Answer :

GinnyAnswer
The correct answer is:

DO
Someone with knowledge of the operation and a security background

Explanation:
1. When it comes to log review, it is essential that the individual conducting the review has knowledge of the operation and a background in security.
2. This is because understanding the system's operations and having security expertise allows the reviewer to identify anomalies, potential security threats, and unauthorized access more effectively.
3. By having someone with knowledge of the operation and a security background perform log reviews, the organization can ensure that any issues or risks are identified and addressed promptly.
4. While certified professionals with experience in logging tools can be beneficial, having someone who understands the system's operations and security aspects is crucial for effective log review and maintaining the system's security integrity.