EC-Council CTIA Module 6.7 Practice Test 002

By /

This practice test covers Module 6 (Intelligence Reporting and Dissemination) Sub-module 7 (Intelligence Sharing Acts and Regulations).

These questions are inspired by the EC-Council CTIA exam and are designed to help you test your knowledge of cyber threat intelligence, threats and frameworks, and other related topics. Some questions require multiple correct answers.

These are not official exam questions or brain dumps. They are original scenario-based questions created to reflect the skills and knowledge tested in the CTIA exam.

Note: CTIA is a registered trademark of EC-Council. This content is not affiliated with or endorsed by EC-Council.

To choose CTIA practice tests based on specific modules and sub-modules, click that link

EC-Council CTIA Module 6.7 Practice Test 002
10 questions • Single best answer
Question 1
A CTI program manager at a U.S. critical infrastructure operator wants liability protection when voluntarily sharing cyber threat indicators with the federal government. Counsel asks which 2015 federal law grants this protection. Which law applies?
    Question 2
    An analyst labels a threat report so recipients know it may be shared only within their own organization and not posted publicly. The team needs a simple color-coded standard for these handling rules. Which standard defines them?
      Question 3
      A financial institution in the EU plans to share indicators that contain personal data with partners. Its privacy officer requires that the processing comply with European data protection law. Which regulation governs this?
        Question 4
        A U.S. Department of Homeland Security program enables bidirectional, near-real-time exchange of cyber threat indicators between government and private-sector participants. An MSSP wants to join this structured collaboration. Which program provides it?
          Question 5
          A critical infrastructure operator wants assurance that information it voluntarily submits to the government is exempt from public disclosure under freedom-of-information requests. A DHS program offers this safeguard. Which program is it?
            Question 6
            A national U.S. body integrates and analyzes intelligence on foreign cyber threats and coordinates that assessment across federal agencies. An executive asks which entity fills this integration role. Which is it?
              Question 7
              An analyst receives intelligence designated for named recipients only, with no redistribution permitted even inside their own organization. Under the color handling scheme, the team must identify this most restrictive designation. Which is it?
                Question 8
                A UK organization joins a confidential government-industry partnership to exchange cyber threat information in a secure, trusted environment. Its security lead must name this national initiative. Which one is it?
                  Question 9
                  A CTI lead joins a sector-specific community where members in the same industry exchange threat data, alerts, and best practices. An executive asks what kind of body this is. Which describes it?
                    Question 10
                    A CTI team wants to share indicators in a machine-readable, standardized format and move them over a trusted transport so partners can automate ingestion. An architect must pick the right pairing. Which combination fits?
                      Answered: 0/10

                      Related Posts

                      Leave a Comment

                      Your email address will not be published. Required fields are marked *

                      Scroll to Top