CompTIA CySA+ (CS0-002) — Question 288

A consultant is evaluating multiple threat intelligence feeds to assess potential risks for a client. Which of the following is the BEST approach for the consultant to consider when modeling the client's attack surface?

Answer options

• A. Ask for external scans from industry peers, look at the open ports, and compare information with the client.
• B. Discuss potential tools the client can purchase to reduce the likelihood of an attack.
• C. Look at attacks against similar industry peers and assess the probability of the same attacks happening.
• D. Meet with the senior management team to determine if funding is available for recommended solutions.

Correct answer: C

Explanation

The correct answer is C because analyzing attacks on similar industry peers helps in understanding the specific vulnerabilities and threats relevant to the client's context. Option A focuses on external scans, which may not give a complete picture of potential risks. Option B discusses purchasing tools but does not address the actual threats present. Option D involves funding discussions, which are important but do not directly aid in assessing the attack surface.