EC-Council CTIA Module 3.2 Practice Test 002

This practice test covers Module 3 (Planning, Direction, and Review) Sub-module 2 (Requirements Analysis).

These questions are inspired by the EC-Council CTIA exam and are designed to help you test your knowledge of cyber threat intelligence, threats and frameworks, and other related topics. Some questions require multiple correct answers.

These are not official exam questions or brain dumps. They are original scenario-based questions created to reflect the skills and knowledge tested in the CTIA exam.

Note: CTIA is a registered trademark of EC-Council. This content is not affiliated with or endorsed by EC-Council.

To choose CTIA practice tests based on specific modules and sub-modules, click that link

EC-Council CTIA Module 3.2 Practice Test 002

10 questions • Single best answer

Question 1

A CTI program manager at a logistics company gathers the key questions stakeholders need intelligence to answer. These prioritized questions will steer all collection. What are these formally called?

A. IoCs B. Priority Intelligence Requirements C. YARA rules D. Runbooks

Question 2

To rank requirements, the team labels each as must-have, should-have, could-have, or won't-have. Which prioritization method is this?

A. MoSCoW method B. Kill chain C. Diamond Model D. Pyramid of Pain

Question 3

An analyst stresses that requirements must come from what decision-makers actually need, not analyst guesses. Whose needs primarily drive requirements?

A. The attackers B. Random vendors C. The media D. The intelligence consumers

Question 4

Without clearly defined requirements, a program risks collecting irrelevant data and wasting effort. What do well-defined requirements primarily ensure?

A. More noise B. Wasted effort C. Focused, relevant collection D. Random data

Question 5

Using the prioritization scheme, a requirement deemed absolutely essential for the program to succeed falls into which category?

A. Could have B. Must have C. Won't have D. Should have

Question 6

A requirement the team agrees to explicitly exclude from the current cycle is placed in which category?

A. Must have B. Should have C. Could have D. Won't have

Question 7

Requirements analysis also bounds what the program will and will not cover, including systems and threat types. Defining these boundaries establishes what?

A. Program scope B. A malware sample C. An IoC feed D. A firewall rule

Question 8

To elicit needs, analysts interview executives, SOC leads, and IR teams about the decisions they must make. What phase of the process is this?

A. Dissemination B. Exfiltration C. Requirements gathering D. Cleanup

Question 9

Executives need strategic outputs while SOC analysts need tactical ones. Requirements analysis must align each product with what?

A. The cheapest feed B. The specific consumer's needs C. The largest dataset D. The newest tool

Question 10

Defined requirements form the basis for what the team will collect, process, and analyze. Within the intelligence lifecycle, requirements belong to which phase?

A. Dissemination B. Collection C. Feedback D. Planning and direction

EC-Council CTIA Module 3.2 Practice Test 002

Related Posts

Leave a Comment Cancel Reply