Which of the following best describes what a virus is? correct answers Malicious Code
Which of the following is not an aspect of the NIST Incident Response Methodology?
correct answers Risk Reduction Prioritization
A user who sends sensitive work documents to their personal email account is which of
the following? correct answers Non-adversarial threat
Which of the following is not a potential driver of cyber crime? correct answers
Penetration Testing
An Advanced Persistent Threat (APT) attacking a nation state's technological
infrastructure is considered which of the following? correct answers Adversarial threat
Which of the following best describes Cyber Threat Intelligence? correct answers
Knowledge about adversaries and their capabilities, motivations, and intentions that
helps organizations protect themselves in the cyber domain
Which of the following is NOT a source of Cyber Threat Intelligence? correct answers
Gut feelings
What is one of the benefits of Operational Cyber Threat Intelligence? correct answers
Provide situational awareness and context to IR teams during an ongoing incident
Which activity best corresponds with the Cyber Kill Chain Reconnaissance Phase?
correct answers Open Source Intelligence Gathering
Which activity best corresponds with the Cyber Kill Chain Actions and Objectives
Phase? correct answers Stealing all of the (cyber) things!
Which activity best corresponds with the Cyber Kill Chain Delivery Phase? correct
answers Drive-by download
Insider threats are ALWAYS considered adversarial threats correct answers False
Which of the following is not a primary goal of an SIRT? correct answers Provide real-
time compliance status updates
Tactical Cyber Threat Intelligence is used to _________ correct answers Validate and
prioritize indicators, patches, and alerts