The Power of Threat Intelligence

Questions and Answers

Which of the following is a challenge faced by security analysts when interpreting intelligence?

Intelligence development is done in-house

Security analysts receive warnings on a single topic

Intelligence tells analysts everything they would like

Interpretation must consider organizational attributes (correct)

What is the role of security analysts after receiving warnings related to a range of topics?

Commission intelligence development

Receive more warnings on the same topic

Review the findings and decide the best course of action (correct)

Develop intelligence in-house

Is there a one-size-fits-all model for interpretation?

It depends on the type of intelligence

Yes, there is a one-size-fits-all model

No, there isn't a one-size-fits-all model (correct)

It depends on the organization's size

Which of the following is NOT a benefit of threat intelligence?

Providing indicators of compromise (IOCs)

Which of the following is NOT a common source of threat intelligence?

Job roles

What are indicators of compromise (IOCs)?

Signatures related to attacker activity

What are the two main areas of job roles in the world of cyber threat intelligence?

Production and interpretation

Which one of the following best describes threat intelligence?

Data collected and analyzed by an organization to understand the motives and behavior of cyber attackers

What is the main focus of cyber threat intelligence?

Attacker tactics, techniques, and procedures

What do the terms 'tactics' and 'techniques' refer to in the context of cyber threats?

Tactics refer to the adversary's tactical goal or reason for performing an action, while techniques refer to how an adversary achieves a tactical goal