The Power of Threat Intelligence

Questions and Answers

Which of the following is a challenge faced by security analysts when interpreting intelligence?

• Intelligence development is done in-house
• Security analysts receive warnings on a single topic
• Intelligence tells analysts everything they would like
• Interpretation must consider organizational attributes (correct)

What is the role of security analysts after receiving warnings related to a range of topics?

• Commission intelligence development
• Receive more warnings on the same topic
• Review the findings and decide the best course of action (correct)
• Develop intelligence in-house

Is there a one-size-fits-all model for interpretation?

• It depends on the type of intelligence
• Yes, there is a one-size-fits-all model
• No, there isn't a one-size-fits-all model (correct)
• It depends on the organization's size

Which of the following is NOT a benefit of threat intelligence?

Providing indicators of compromise (IOCs) (D)

Which of the following is NOT a common source of threat intelligence?

Job roles (D)

What are indicators of compromise (IOCs)?

Signatures related to attacker activity (D)

What are the two main areas of job roles in the world of cyber threat intelligence?

Production and interpretation (B)

Which one of the following best describes threat intelligence?

Data collected and analyzed by an organization to understand the motives and behavior of cyber attackers (C)

What is the main focus of cyber threat intelligence?

Attacker tactics, techniques, and procedures (B)

What do the terms 'tactics' and 'techniques' refer to in the context of cyber threats?

Tactics refer to the adversary's tactical goal or reason for performing an action, while techniques refer to how an adversary achieves a tactical goal (A)

Flashcards are hidden until you start studying