New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Eccouncil 312-39 Exam - Topic 3 Question 40 Discussion

Actual exam question for Eccouncil's 312-39 exam
Question #: 40
Topic #: 3
[All 312-39 Questions]

Which of the following threat intelligence is used by a SIEM for supplying the analysts with context and "situational awareness" by using threat actor TTPs, malware campaigns, tools used by threat actors.

1. Strategic threat intelligence

2. Tactical threat intelligence

3. Operational threat intelligence

4. Technical threat intelligence

Show Suggested Answer Hide Answer
Suggested Answer: A

by Pete at May 03, 2022, 03:59 PM

Limited Time Offer

25%

Off

Get Premium 312-39 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Anissa
4 months ago
Surprised that people think 1 is relevant at all!
upvoted 0 times
...
Benedict
4 months ago
Tactical and operational make the most sense here.
upvoted 0 times
...
Titus
4 months ago
Wait, isn't strategic more about long-term trends?
upvoted 0 times
...
Alfred
4 months ago
I disagree, I lean towards 3 and 4.
upvoted 0 times
...
Van
5 months ago
Definitely think it's 2 and 3!
upvoted 0 times
...
Micah
5 months ago
I practiced a similar question where tactical intelligence was definitely involved, but I'm torn between options C and D for this one.
upvoted 0 times
...
Dalene
5 months ago
I feel like strategic threat intelligence might be too high-level for this question, but I could see how it could relate to situational awareness.
upvoted 0 times
...
Ellen
5 months ago
I remember studying that technical threat intelligence focuses on TTPs, but I can't recall if it was 3 or 4 that was specifically mentioned in the context of SIEMs.
upvoted 0 times
...
Francine
5 months ago
I think tactical and operational threat intelligence are key for SIEMs, but I'm not entirely sure if that's the right combination.
upvoted 0 times
...
Tegan
5 months ago
This question seems pretty straightforward. I'll carefully read through the options and eliminate the ones that clearly don't fit the definition of cyber-crime.
upvoted 0 times
...
Derrick
5 months ago
This is a tricky one. I'm going to need to draw on my SQL Server knowledge to figure out which of these options is the most appropriate for the given scenario.
upvoted 0 times
...
Tarra
5 months ago
Interesting question. I think the key here is that the BA is using this technique to gather and structure ideas, so the answer is probably about managing stakeholder collaboration.
upvoted 0 times
...

Save Cancel