filter the alerts

Lucy is tasked with configuring alerts that are sent to system administrators. She builds a rule that can be represented in pseudocode as follows:

Send an SMS alert every 30 seconds when systems do not send logs for more than 1 minute.

The average administrator at Lucy’s organization is responsible for 150 to 300 machines.

What threat does Lucy’s alert create?

1. A DDoS that causes administrators to not be able to access systems
2. A network outage
3. Administrators may ignore or filter the alerts.
4. A memory spike

C. Availability analysis targets whether a system or service is working as expected. While a SIEM may not have direct availability analysis capabilities, reporting on when logs and other data are not received from source systems can help detect outages. Ideally, Lucy’s organization should be using a system monitoring tool that can alarm on availability issues as well as common system problems such as excessive memory, network, disk, or CPU usage.