Bob, a threat analyst, works in an organization named TechTop. He was asked to collect intelligence to fulfil the needs and requirements of the Red Tam present within the organization.
Which of the following are the needs of a RedTeam?

1. A. Intelligence related to increased attacks targeting a particular software or operating system vulnerability
2. B. Intelligence on latest vulnerabilities, threat actors, and their tactics, techniques, and procedures (TTPs)
3. C. Intelligence extracted latest attacks analysis on similar organizations, which includes details about latest threats and TTPs
4. D. Intelligence that reveals risks related to various strategic business decisions

Correct Answer: B

What is the correct sequence of steps involved in scheduling a threat intelligence program?
* 1. Review the project charter
* 2. Identify all deliverables
* 3. Identify the sequence of activities
* 4. Identify task dependencies
* 5. Develop the final schedule
* 6. Estimate duration of each activity
* 7. Identify and estimate resources for all activities
* 8. Define all activities
* 9. Build a work breakdown structure (WBS)

1. A. 1-->9-->2-->8-->3-->7-->4-->6-->5
2. B. 3-->4-->5-->2-->1-->9-->8-->7-->6
3. C. 1-->2-->3-->4-->5-->6-->9-->8-->7
4. D. 1-->2-->3-->4-->5-->6-->7-->8-->9

Correct Answer: A

Sam works as an analyst in an organization named InfoTech Security. He was asked to collect information from various threat intelligence sources. In meeting the deadline, he forgot to verify the threat intelligence sources and used data from an open-source data provider, who offered it at a very low cost. Through it was beneficial at the initial stage but relying on such data providers can produce unreliable data and noise putting the organization network into risk.
What mistake Sam did that led to this situation?

1. A. Sam used unreliable intelligence sources.
2. B. Sam used data without context.
3. C. Sam did not use the proper standardization formats for representing threat data.
4. D. Sam did not use the proper technology to use or consume the information.

Correct Answer: D

An XYZ organization hired Mr. Andrews, a threat analyst. In order to identify the threats and mitigate the effect of such threats, Mr. Andrews was asked to perform threat modeling. During the process of threat modeling, he collected important information about the treat actor and characterized the analytic behavior of the adversary that includes technological details, goals, and motives that can be useful in building a strong countermeasure.
What stage of the threat modeling is Mr. Andrews currently in?

1. A. System modeling
2. B. Threat determination and identification
3. C. Threat profiling and attribution
4. D. Threat ranking

Correct Answer: C

Cybersol Technologies initiated a cyber-threat intelligence program with a team of threat intelligence analysts.
During the process, the analysts started converting the raw data into useful information by applying various techniques, such as machine-based techniques, and statistical methods.
In which of the following phases of the threat intelligence lifecycle is the threat intelligence team currently working?

1. A. Dissemination and integration
2. B. Planning and direction
3. C. Processing and exploitation
4. D. Analysis and production

Correct Answer: A