CYSA Exam set 8 (grain of salt) Questions
and Answers with Verified Solutions | Latest
Updated 2026
As a proactive threat-hunting D
technique, hunters must develop
situational cases based on likely
attack scenarios derived from the
available threat intelligence
information. After forming the
basis
of the scenario, which of the
following may the threat hunter
construct to establish a framework
for threat assessment?
A. Critical asset list
B. Threat vector
C. Attack profile
D. Hypothesis
,An analyst needs to provide a B
recommendation that will allow a A Trusted Execution Environment (TEE) is
custom-developed application to an
have full access to the system's environment for executing code, in which
processors and peripherals but still those
be contained securely from other executing the code can have high levels of
applications that will be developed. trust in
Which of the following is the best that surrounding environment, because it
technology for the analyst to can
recommend? ignore threats from the rest of the device.
A. Software-based drive
encryption
B. Trusted execution environment
C. Unified Extensible Firmware
Interface
D. Hardware security module
,A new prototype for a company's A
flagship product was leaked on the
internet. As a result, the
management
team has locked out all USB dives.
Optical drive writers are not
present
on company computers. The sales
team has been granted an
exception
to share sales presentation files
with
third parties. Which of the
following
would allow the IT team to
determine
which devices are USB enabled?
A. Asset tagging
B. Device encryption
C. Data loss prevention
D. SIEM logs
, A security officer needs to find a B
solution to the current data privacy A data minimization plan is a strategy that
and protection gap found in the aims to
last reduce the amount and type of data that
security assessment. Which of the an
following is the most cost-effective organization collects, stores, and
solution? processes. It can
A. Require users to sign NDAs. help improve data privacy and protection
B. Create a data minimization by
plan. limiting the exposure and impact of a data
C. Add access control breach
requirements. or loss. Creating a data minimization plan
D. Implement a data loss is the
prevention best recommendation for a security officer
solution. who
needs to find the most cost-effective
solution to
the current data privacy and protection
gap.
Requiring users to sign NDAs, adding
access
control requirements, or implementing a
data loss
prevention solution are other possible
solutions,
but they are not as cost-effective as
creating a data
minimization plan.
and Answers with Verified Solutions | Latest
Updated 2026
As a proactive threat-hunting D
technique, hunters must develop
situational cases based on likely
attack scenarios derived from the
available threat intelligence
information. After forming the
basis
of the scenario, which of the
following may the threat hunter
construct to establish a framework
for threat assessment?
A. Critical asset list
B. Threat vector
C. Attack profile
D. Hypothesis
,An analyst needs to provide a B
recommendation that will allow a A Trusted Execution Environment (TEE) is
custom-developed application to an
have full access to the system's environment for executing code, in which
processors and peripherals but still those
be contained securely from other executing the code can have high levels of
applications that will be developed. trust in
Which of the following is the best that surrounding environment, because it
technology for the analyst to can
recommend? ignore threats from the rest of the device.
A. Software-based drive
encryption
B. Trusted execution environment
C. Unified Extensible Firmware
Interface
D. Hardware security module
,A new prototype for a company's A
flagship product was leaked on the
internet. As a result, the
management
team has locked out all USB dives.
Optical drive writers are not
present
on company computers. The sales
team has been granted an
exception
to share sales presentation files
with
third parties. Which of the
following
would allow the IT team to
determine
which devices are USB enabled?
A. Asset tagging
B. Device encryption
C. Data loss prevention
D. SIEM logs
, A security officer needs to find a B
solution to the current data privacy A data minimization plan is a strategy that
and protection gap found in the aims to
last reduce the amount and type of data that
security assessment. Which of the an
following is the most cost-effective organization collects, stores, and
solution? processes. It can
A. Require users to sign NDAs. help improve data privacy and protection
B. Create a data minimization by
plan. limiting the exposure and impact of a data
C. Add access control breach
requirements. or loss. Creating a data minimization plan
D. Implement a data loss is the
prevention best recommendation for a security officer
solution. who
needs to find the most cost-effective
solution to
the current data privacy and protection
gap.
Requiring users to sign NDAs, adding
access
control requirements, or implementing a
data loss
prevention solution are other possible
solutions,
but they are not as cost-effective as
creating a data
minimization plan.