Question 6
Which of the following describes how a CSIRT lead determines who should be communicated with and when during a security incident?
Question 7
Which of the following would a security analyst likely use to compare TTPs between different known adversaries of an organization?
Question 8
Using open-source intelligence gathered from technical forums, a threat actor compiles and tests a malicious downloader to ensure it will not be detected by the victim organization's endpoint security protections. Which of the following stages of the Cyber Kill Chain best aligns with the threat actor's actions?
Question 9
A security analyst reviews the following extract of a vulnerability scan that was performed against the web server:
Which of the following recommendations should the security analyst provide to harden the web server?
Question 10
A security administrator has found indications of dictionary attacks against the company's external-facing portal. Which of the following should be implemented to best mitigate the password attacks?
