Why is log analysis important for security, and what types of logs should security analysts monitor? What would you look for when reviewing authentication logs?

Sample answer preview

Log analysis is fundamental to security operations because logs provide the evidence trail of what happens across an organization's systems and networks. Without log analysis, security teams would be blind to threats until significant damage occurs.