CAS-002 · Question #319
CAS-002 Question #319: Real Exam Question with Answer & Explanation
The correct answer is D: Threat actor types, threat actor motivation, and the attack impact. An executive briefing on a cyber adversary must center on threat actor types, motivation, and attack impact because management decisions are driven by business risk, not technical mechanics. Impact directly translates threat activity into organizational consequences that executiv
Question
Options
- AThreat actor types, threat actor motivation, and attack tools
- BUnsophisticated agents, organized groups, and nation states
- CThreat actor types, attack sophistication, and the anatomy of an attack
- DThreat actor types, threat actor motivation, and the attack impact
Explanation
An executive briefing on a cyber adversary must center on threat actor types, motivation, and attack impact because management decisions are driven by business risk, not technical mechanics. Impact directly translates threat activity into organizational consequences that executives can act on.
Common mistakes.
- A. Attack tools are a technical implementation detail relevant to security engineers and incident responders, not to executives who need business impact information to make strategic decisions.
- B. Listing only actor categories such as unsophisticated agents and nation states, without motivation or impact, gives management insufficient context to assess organizational risk or justify security investment.
- C. Attack sophistication and the anatomy of an attack are operationally focused details intended for security analysts and SOC personnel; executives require impact-oriented content rather than technical attack chain descriptions.
Concept tested. Executive-level cyber threat intelligence briefing content
Reference. https://www.cisa.gov/resources-tools/resources/cyber-threat-intelligence
Community Discussion
No community discussion yet for this question.