CySA Week 2

Connor wants to combine several threat intelligence feeds because of the ridiculous amount of tools that are needed for analysis. What could he use to make this process more productive?

What is the primary difference between SIEM and SOAR?

After analyzing CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Which attribute correctly identifies this vulnerability?

A SOC Analyst has to look at logs on multiple servers on a daily basis. What will give him the best centralized visibility into the events occurring in the company environment without him having to log on to the servers individually

What tool is used as a way of enforcing a security policy between cloud customers and cloud services?

Terry downloads software that contains malware onto his computer that infects other Mycc computers. What has he become?

Adrian is looking at events on multiple systems but is having difficulty correlating data points. What is the cause of the issue?

What do you need to do first thing if one of the web servers in your network is affected by ransomware?

What would work to prevent the exposure of PII outside of your company?