Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
A new cybersecurity analyst is tasked with creating an executive briefing on possible threats to the organization. Which of the following will produce the data needed for the briefing?
this clearly state POssible and not already on the sys, all the other options would make sense for a threat already on the sys, but since they are looking for POSSIBLE only risk assessment make sense
Risk assessment, the threat is not found yet to be discussed, so the analyst has to do a risk assessment first... answer B is incorrect as it nowhere said in the question that the system was attacked before or had indicators of compromise.
Answer is C:
Risk Assessments are either Quantitative or Qualitative... the Quantitative portion would be the data to present to your C-Level Executives.
It is asking "which of the following will produce the data" IoC will produce the data for the briefing. A risk assessment analyzes the data for the briefing.. "Produce" is the key word here
Ans should be c:
Risk assessments provide the data needed for executive briefings by summarizing threats, likelihood, impact, and mitigation strategies, directly addressing potential security risks.
Risk assessments help identify potential hazards. The goal of this process is to determine what measurement should be implemented to mitigate or avoid risks.
IOC consists of information gathered about activity, events, and behaviors that are commonly associated with potentially malicious behavior; analysts will look for information that will allow them to detect potential issues or respond to active compromises promptly. IoC feeds provide community information about threats and threat actors such as behavior-based information for threat actors and malware; Domain names used by malware, command-and-control servers, and infected websites, IP addresses, and hostnames associated with malicious actors or active threats. (CySA+ Study Guide 3rd Edition, CS0-003, CHP 10, PG378, OiC).
The best answer is B. Indicators of compromise. Indicators of compromise (IOCs) are pieces of forensic data, such as system files, network traffic, or malicious URLs, that identify potentially malicious activity on a system or network. IOCs can help a cybersecurity analyst detect, prevent, and respond to cyber threats, as well as provide valuable information for the executive briefing.
Risk assessment.
As someone else stated below, this is an administrative/managerial report, not technical. A risk assessment would detail the risk levels and possible threats to the organization.
C. Risk Assessment
A Risk Assessment provides a comprehensive view of potential threats, vulnerabilities, and the impact they could have on the organization. It generally includes qualitative and/or quantitative analyses and is designed to give an overview of the organization's security posture, making it most suitable for an executive briefing.
The question refers to executive report no technical report
This invalidates any of the technical options: firewall logs (provide technical details), IoCs (specific pieces of information that suggest a security incident or potential breach) and ACL (specify the permissions and restrictions for accessing network resources)
On the other hand, "risk assessment" is essential for an executive briefing as it helps senior management make informed decisions about resource allocation and risk mitigation strategies.
Therefore, the correct answer is C
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
crackman123
Highly Voted 5 months, 1 week agocaptaintoadyo
Most Recent 1 week agodave_delete_me
1 week, 3 days agozclerge
1 week, 6 days agoRottenBarracuda
1 month agoCyberJackal
1 month, 1 week agoStillFiguringItOut
1 month, 2 weeks agosujon_london
2 months, 1 week agojohnabayot
2 months, 3 weeks agoFATWENTYSIX
3 months agoWaaHassan
4 months agoRobV
4 months, 3 weeks ago[Removed]
5 months, 2 weeks agochaddman
6 months, 1 week agokumax
6 months, 4 weeks agokmordalv
7 months, 1 week agochrys
7 months, 3 weeks ago