EC-Council CTIA Module 1.2 Practice Test 001

By /

This practice test covers Module 1 (Introduction to Threat Intelligence) Sub-module 2 (Cyber Threat Intelligence Concepts).

These questions are inspired by the EC-Council CTIA exam and are designed to help you test your knowledge of cyber threat intelligence, threats and frameworks, and other related topics. Some questions require multiple correct answers.

These are not official exam questions or brain dumps. They are original scenario-based questions created to reflect the skills and knowledge tested in the CTIA exam.

Note: CTIA is a registered trademark of EC-Council. This content is not affiliated with or endorsed by EC-Council.

To choose CTIA practice tests based on specific modules and sub-modules, click that link

EC-Council CTIA Module 1.2 Practice Test 001
10 questions • Single best answer
Question 1
An MSSP analyst group briefs a new client on how their service exceeds raw feeds. They deliver evidence-based knowledge about adversary intent, capabilities, and opportunities to guide defensive decisions. Which discipline are they describing?
    Question 2
    A SOC at a healthcare provider ingests millions of IP addresses and file hashes daily from its sensors. An analyst notes these raw observations carry no context, relevance, or interpretation yet. What does this unprocessed material represent?
      Question 3
      A CISO at a regional bank wants high-level insight on geopolitical trends, threat actor motivations, and long-term risks to guide board investment decisions. The output deliberately avoids technical detail and supports executive planning. Which type of intelligence best fits this need?
        Question 4
        An incident response team requests intelligence describing adversary tools, techniques, and procedures so they can harden defenses and tune detections. They need actionable detail for defenders and SOC engineers, not executive summaries. Which type of intelligence are they requesting?
          Question 5
          A threat intelligence team at a critical infrastructure operator receives details about an imminent campaign, including the actor's planned timing and targeted assets. This insight supports immediate response and resource allocation for one specific attack. Which type of intelligence is this?
            Question 6
            An analyst at a cloud service provider correlates discrete indicators such as malicious IPs, malware hashes, and C2 domains that feed directly into detection tools. This short-lived, machine-consumable data supports automated blocking. Which type of intelligence does this describe?
              Question 7
              A government agency moves beyond a reactive posture that simply waits for alerts to fire. The CTI lead explains how an intelligence-driven model changes their defensive stance against attackers. What primary benefit does this model deliver?
                Question 8
                An analyst transforms collected and processed data into evaluated, contextualized insight that decision-makers can act upon. The team treats this creation of actionable knowledge from raw inputs as a core CTI function. What is this process called?
                  Question 9
                  A newly hired cyber threat analyst at an MSSP asks her lead about her core duties. He lists collecting and analyzing adversary data, producing reports, and supporting defenders with relevant findings. Which responsibility falls OUTSIDE a typical CTI analyst role?
                    Question 10
                    During a training session, an instructor stresses that genuine intelligence must be evidence-based and include mechanisms, implications, and guidance about an existing or emerging threat. A trainee asks what separates this from a simple alert. Which characteristic is essential?
                      Answered: 0/10

                      Related Posts

                      Leave a Comment

                      Your email address will not be published. Required fields are marked *

                      Scroll to Top