Which of the following should the security engineer do to BEST manage the threats proactively?

A small company recently developed prototype technology for a military program. The company’s security engineer is concerned about potential theft of the newly developed, proprietary information.

Which of the following should the security engineer do to BEST manage the threats proactively?
A . Join an information-sharing community that is relevant to the company.
B . Leverage the MITRE ATT&CK framework to map the TTR.
C . Use OSINT techniques to evaluate and analyze the threats.
D . Update security awareness training to address new threats, such as best practices for data security.

View Answer

Answer: A

Explanation:

An information-sharing community is a group or network of organizations that share threat intelligence, best practices, and mitigation strategies related to cybersecurity. An information-sharing community can help the company proactively manage the threats of potential theft of its newly developed, proprietary information by providing timely and actionable insights, alerts, and recommendations. An information-sharing community can also enable collaboration and coordination among its members to enhance their collective defense and resilience.

Reference:

https://us-cert.cisa.gov/ncas/tips/ST04-016

https://www.cisecurity.org/blog/what-is-an-information-sharing-community/