MDT ORAL EXAM QUESTIONS AND ANSWERS
a. Identify relationship of basic facts and state general principles about the purpose of an Air Force
Mission Defense Team. Task(s): MEAS: PC - CORRECT ANSWER✅✅✅Purpose: Organic Cyber
Defense, Inherent Cyber Risk Assessment, Quick Response Mitigation Capabilities
Active cyber defense of core mission areas, provide mission assurance of AF weapon systems
Using DCO
Identify relationship of basic facts and state general principles regarding core functions of an Air Force
Mission Defense Team. Task(s): MEAS: PC - CORRECT
ANSWER✅✅✅Identify/Protect/Detect/Respond/Recover and Sustain
Identify - CORRECT ANSWER✅✅✅FMA (Functional Mission Analysis)
Identify, verify, and prioritize information about their mission system
Diagrams, nmap
Key Output of FMA is MRT-C
Protect - CORRECT ANSWER✅✅✅Implementing control measures, refining TTPs
Detect - CORRECT ANSWER✅✅✅identify anomalies and malicious intent. Through network tap and
port mirroring on switches. Kibana and moloch
Respond - CORRECT ANSWER✅✅✅Mitigation through Pre approved actions, remove adversary
Response activities at firewalls, routers,
Recover/Sustain - CORRECT ANSWER✅✅✅Restore MDT operations. Provide inputs to system
admins during recovery, incorporate lessons learned into TTPs
Identify relationship of basic facts and state general principles about the composition of an Air Force
Mission Defense Team. Task(s): MEAS: PC - CORRECT ANSWER✅✅✅MDT Leadership, Network
Specialist, Host Specialist, Intel Support, Mission Representative
a. Identify relationship of basic facts and state general principles about the purpose of an Air Force
Mission Defense Team. Task(s): MEAS: PC - CORRECT ANSWER✅✅✅Purpose: Organic Cyber
Defense, Inherent Cyber Risk Assessment, Quick Response Mitigation Capabilities
Active cyber defense of core mission areas, provide mission assurance of AF weapon systems
Using DCO
Identify relationship of basic facts and state general principles regarding core functions of an Air Force
Mission Defense Team. Task(s): MEAS: PC - CORRECT
ANSWER✅✅✅Identify/Protect/Detect/Respond/Recover and Sustain
Identify - CORRECT ANSWER✅✅✅FMA (Functional Mission Analysis)
Identify, verify, and prioritize information about their mission system
Diagrams, nmap
Key Output of FMA is MRT-C
Protect - CORRECT ANSWER✅✅✅Implementing control measures, refining TTPs
Detect - CORRECT ANSWER✅✅✅identify anomalies and malicious intent. Through network tap and
port mirroring on switches. Kibana and moloch
Respond - CORRECT ANSWER✅✅✅Mitigation through Pre approved actions, remove adversary
Response activities at firewalls, routers,
Recover/Sustain - CORRECT ANSWER✅✅✅Restore MDT operations. Provide inputs to system
admins during recovery, incorporate lessons learned into TTPs
Identify relationship of basic facts and state general principles about the composition of an Air Force
Mission Defense Team. Task(s): MEAS: PC - CORRECT ANSWER✅✅✅MDT Leadership, Network
Specialist, Host Specialist, Intel Support, Mission Representative
