Which of the following statements is true regarding FortiSIEM processing capabilities?

The statement that FortiSIEM requires a Worker for enhanced processing is accurate because, in FortiSIEM architecture, Workers are essential components responsible for processing data efficiently. These Workers allow for the distribution of processing tasks, which enhances overall performance and scalability, especially in environments with a high volume of events. They help ensure that the system can manage and analyze large amounts of log data effectively, providing timely insights and alerts.

In contrast, the other options presented provide inaccurate or incomplete representations of FortiSIEM's capabilities. It is designed to handle high EPS (events per second) rates, allowing organizations to monitor and respond to security events without being limited by processing power. Additionally, FortiSIEM has the ability to store logs beyond a simple 30-day retention, usually allowing for longer periods depending on configuration and storage capacity. It also doesn't solely process logs in real-time; it can process historical logs for analysis, providing a more comprehensive security posture.