CompTIA CASP+ (CAS-004) — Question 215

A security analyst for a managed service provider wants to implement the most up-to-date and effective security methodologies to provide clients with the best offerings. Which of the following resources would the analyst MOST likely adopt?

Answer options

• A. OSINT
• B. ISO
• C. MITRE ATT&CK
• D. OWASP

Correct answer: C

Explanation

The correct answer is C, MITRE ATT&CK, as it provides a comprehensive framework for understanding and mitigating cyber threats. While OSINT, ISO, and OWASP are valuable resources, they do not offer the same level of detailed threat intelligence and attack patterns that MITRE ATT&CK provides, making it more suitable for the analyst's needs.