Certified Threat Intelligence Analyst (CTIA) — Question 19

An organization suffered many major attacks and lost critical information, such as employee records, and financial information. Therefore, the management decides to hire a threat analyst to extract the strategic threat intelligence that provides high-level information regarding current cyber-security posture, threats, details on the financial impact of various cyber-activities, and so on.
Which of the following sources will help the analyst to collect the required intelligence?

Answer options

• A. Active campaigns, attacks on other organizations, data feeds from external third parties
• B. OSINT, CTI vendors, ISAO/ISACs
• C. Campaign reports, malware, incident reports, attack group reports, human intelligence
• D. Human, social media, chat rooms

Correct answer: B

Explanation

The correct answer is B because OSINT (Open Source Intelligence), CTI (Cyber Threat Intelligence) vendors, and ISAO/ISACs (Information Sharing and Analysis Organizations/Communities) provide structured and reliable information necessary for understanding the current threat landscape. The other options, while they may contain some useful information, do not offer the same level of strategic threat intelligence as B does, which is critical for the analyst's objectives.