Solved

An Information Security Analyst on a Threat-Hunting Team Is Working

question 30

Multiple Choice

An information security analyst on a threat-hunting team is working with administrators to create a hypothesis related to an internally developed web application. The working hypothesis is as follows: Due to the nature of the industry, the application hosts sensitive data associated with many clients and is a significant target. The platform is most likely vulnerable to poor patching and inadequate server hardening, which expose vulnerable services. The application is likely to be targeted with SQL injection attacks due to the large number of reporting capabilities within the application. As a result, the systems administrator upgrades outdated service applications and validates the endpoint configuration against an industry benchmark. The analyst suggests developers receive additional training on implementing identity and access management, and also implements a WAF to protect against SQL injection attacks. Which of the following BEST represents the technique in use?

Definitions:

Regulating Heartbeat

The management and control of the rate at which the heart beats, typically through the autonomic nervous system and hormonal signals.

Phonetic Method

An approach to teaching reading and spelling that emphasizes sound-symbol relationships and the sounding out of words.

Sight Vocabulary

Words that are immediately recognized on the basis of familiarity with their overall shapes, rather than decoded.

Rote Learning

A memorization technique based on repetition, often without an understanding of the reasoning or relationships behind the information.