A security administrator is hardening corporate systems and applying appropriate mitigations by consulting a real-world knowledge base for adversary behavior. Which of the following would be best for the administrator to reference?
MITRE ATT&CK is a comprehensive and widely used framework that categorizes and describes the various tactics, techniques and procedures (TTPs) employed by adversaries, it is used for threat intelligence, defensive strategy etc.
A. MITRE ATT&CK (answer)
B. CSIRT - a group of professionals who respond to and manage cybersecurity incidents
C. CVSS - Vulnerability scoring
D. SOAR - Security orchestration, automation and response
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.SY0-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
a4e15bd
Highly Voted 10 months, 2 weeks ago3dk1
Most Recent 7 months, 2 weeks ago