To design new software applications

To describe the most likely types of adversaries and their tactics, techniques, and procedures (TTPs)

To create marketing strategies

To manage employee performance

Only for the entire organization

Only for external threats

For a specific department or asset, such as a file server

Only for financial assets

By focusing on the least likely threats

By helping organizations focus on the most likely types of adversaries and threats

By eliminating all risks

By increasing the number of potential threats

Time, Task, and Process

Tactics, Techniques, and Procedures

Tools, Technology, and Protocols

Threats, Targets, and Plans

Identifying potential adversaries

Describing the organization's marketing strategy

Understanding adversaries' TTPs

Focusing on specific assets or departments

To increase the asset's value

To focus security efforts on the most relevant threats to that asset

To reduce the number of employees

To improve customer satisfaction

To create a detailed financial report

To outline the most likely adversaries and their methods

To develop new software features

To enhance employee training programs