A consultant is evaluating multiple threat intelligence feeds to assess potential risks for a client. Which of the following is the BEST approach for the consultant to consider when modeling the client's attack surface?
A.
Ask for external scans from industry peers, look at the open ports, and compare information with the client.
B.
Discuss potential tools the client can purchase to reduce the likelihood of an attack.
C.
Look at attacks against similar industry peers and assess the probability of the same attacks happening.
D.
Meet with the senior management team to determine if funding is available for recommended solutions.
A is an absurd answer. "Hi company B, I'm from your rival, company A. Would you mind giving us scans of your network so we can see which ports you keep open? It's not for anything sinister, I promise."
no... a consultant is not working for company A or B. he is consulting for Company A and probably many others along with his peers. His peers in this case are fellow consultants who are also not attached to company A or B.
I think the key word here is consultant.
They are looking for the best way to find out as much as possible, so actual scans would be it. They aren't asking competitors, but other consultants. This would be sharing, in the same fashion as threat intelligence. That's at least how I see it.
C. Look at attacks against similar industry peers and assess the probability of the same attacks happening would be the best approach for the consultant to consider when modeling the client's attack surface. By examining similar industry peers, the consultant can gain insight into what types of threats and attacks are most prevalent in that industry, and use that information to assess the potential risks for the client. This approach can help the consultant to identify which threats are most likely to impact the client and prioritize the resources needed to mitigate those risks. - ChtGPT
External scans details cannot be disclosed for comparison with other clients. This will be a security breach for a companies scan reports being accessible for comparison.
You cannot just ask for External scans from peers. This needs approval and paperwork..it is not your peers that have been tasked with this job, it is you...Answer is C
I'm really torn with A and C. Only picking A because it asks specifically asks about modelling their attack surface. This question seems like one of those stupid comptia questions where you shouldn't over think things....
With that said - if I was a consultant, I would rather perform C and help my client build and develop their network. Plus, just because others have a certain attack surface, it doesn't mean we should mirror it. It may not work for the client or simply be poorly configured. Smh.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.CS0-002 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
msey2
Highly Voted 2 years, 8 months agokill_chain
2 years, 1 month agoStiobhan
2 years, 6 months agoKhanhMicheal
Most Recent 11 months, 1 week agogoku1
2 years, 3 months agoJoInn
2 years, 4 months ago2Fish
2 years, 5 months agoDrVoIP
2 years, 5 months agoprud31
2 years, 8 months agoSolventCourseisSCAM
2 years, 9 months agoMortG7
2 years, 10 months agoCizzla7049
2 years, 10 months agosh4dali
2 years, 10 months agoBelijmag
2 years, 11 months agoEAart
2 years, 11 months agoAdonist
2 years, 11 months agoLaudy
2 years, 11 months ago