A security analyst for a managed service provider wants to implement the most up-to-date and effective security methodologies to provide clients with the best offerings. Which of the following resources would the analyst MOST likely adopt?
A security analyst for a managed service provider wants to implement the most up-to-date and effective security methodologies to provide clients with the best offerings. Which of the following resources would the analyst MOST likely adopt?
The MITRE ATT&CK framework would be the most appropriate resource for implementing up-to-date and effective security methodologies. MITRE ATT&CK is a comprehensive knowledge base of adversary tactics and techniques that is constantly updated and widely used in cybersecurity to understand and defend against cyber threats. It provides detailed information on how cyber attackers operate, which can be extremely useful for a managed service provider looking to enhance their security offerings. While other options like ISO, OWASP, and OSINT are valuable in their respective areas—standardization, web application security, and open-source intelligence gathering respectively—MITRE ATT&CK specifically offers the most practical and current methodologies for understanding and countering cyber threats.
Answer has to be ISO. Key phrase in the question: "security methodologies". Examples) ISO27001: Information Security Management System (ISMS), ISO/IEC 27005: Information Security Risk Management. MITRE ATT&CK is a knowledge base of adversary tactics and techniques.
what about the second keyword - most up-to-date :P
ISO is more broad, Mitre will focus on the TTP to defend your enterprise and is a tool mostly use by cybersecurity.
This one is weird. I guess it should be MITRE but only because the others don't really make sense...OWASP is for web applications, OSINT is open source intelligence gathering and ISO is for standardization.
From the MITRE Corporation website: "MITRE ATT&CK® is a knowledge base that helps model cyber adversaries' tactics and techniques—and then shows how to detect or stop them." So this would satisfy the need for methodologies for the security analyst. Also, they are more up-to-date than ISO. ISO does focus on security too, but they review their standards every 5 years.
I'm going with B since ISO releases standards specific to helping with strengthening cybersecurity posture. MITRE is more about detailing tactics of adversaries. MITRE can help see what types of attacks need to be defended against, but ISO standards would be more specific to building a strong cybersecurity posture.
I believe the answer is C. I was going back and forth between MITRE and OWASP, but after reading what the official Comptia study guide said regarding the 2, I chose MITRE
C. MITRE ATT&CK
B, as ISO is a methodology, MITRE is a framework.