Which of the following should the analyst do FIRST?

Posted by: Pdfprep Category: CS0-002 Tags: , , Post Date: November 8, 2020

A cybersecurity analyst is contributing to a team hunt on an organization’s endpoints.

Which of the following should the analyst do FIRST?
A . Write detection logic.
B . Establish a hypothesis.
C . Profile the threat actors and activities.
D . Perform a process analysis.

Answer: C

Explanation:

Reference: https://www.cybereason.com/blog/blog-the-eight-steps-to-threat-hunting

Author

Leave a Reply

Your email address will not be published.