ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam
Go to Exam

Exam CISM topic 1 question 154 discussion

Actual exam question from Isaca's CISM
Question #: 154
Topic #: 1
[All CISM Questions]

Which of the following external entities would provide the BEST guidance to an organization facing advanced attacks?

  • A. Incident response experts from highly regarded peer organizations
  • B. Open-source reconnaissance
  • C. Recognized threat intelligence communities
  • D. Disaster recovery consultants widely endorsed in industry forums
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by N1co_o at Feb. 18, 2023, 11:58 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
dark_3k03r
Highly Voted 1 year, 9 months ago
Selected Answer: C
The correct answer is C - Recognized threat intelligence Communities as they have the required expertise to understand advance attacks. A. Peers may be competitors, so this could result in corporate espionage B. Giving this to the public is not advisable as malicious actors and amateurs may be in the midst. D. This is not a disaster recovery issue, but a security issue.
upvoted 5 times
...
Vishalgupta26
Most Recent 3 weeks, 5 days ago
Selected Answer: C
Recognized threat intelligence communities are the most relevant external entities for providing guidance on advanced attacks. These communities collect, analyze, and share timely and actionable threat intelligence, including information about emerging threats, tactics, techniques, and procedures (TTPs) used by advanced attackers. By leveraging such intelligence, organizations can proactively improve their defenses and respond more effectively to evolving threats.
upvoted 1 times
...
ntgc
2 months, 3 weeks ago
Selected Answer: C
C is the right answer. This is a security issue and threat intelligence communities will provide valuable resources and information.
upvoted 1 times
...
AaronS1990
1 year, 4 months ago
But aren’t we taught that APT’s would be in threat intelligence communities and that they can be in your system for months before you even notice. If so there wouldn’t be anything about them in threat intelligence communities.
upvoted 1 times
...
richck102
1 year, 7 months ago
C. Recognized threat intelligence communities
upvoted 2 times
...
N1co_o
1 year, 10 months ago
A i guess
upvoted 2 times
Rowlandmarc
1 year, 10 months ago
Facing an attack does not necessarily mean that an incident as occurred... it is a live Threat against the systems which would lead me to chose C
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago