You are the security analyst overseeing a Security Information and Event Management (SIEM) system deployment. The CISO has concerns about negatively impacting the system resources on individual computer systems. Which approach would minimize the resource usage on individual computer systems while maintaining effective data collection?
a. Increase the logging frequency for all events.
b. Implement event filtering based on relevance and severity.
c. Enable real-time monitoring on all endpoints.
d. Disable log compression to ensure detailed data retention.