LOGBOOK

HELP

Quiz Entry - updated: 2026.06.20

The threat-modelling exercise begins with "identify your industry." Why is industry the very first step?

Because the industry you operate in shapes which assets are valuable, which threat actors target you, and which attack types and regulations apply — it sets the context for everything that follows.

Examples of industries on the list include automotive, healthcare, manufacturing, retail, finance, insurance, mining, cybersecurity, e-commerce, gaming, sports gambling, and hosting. WHY it is first: a hospital, a bank, and a car maker face completely different adversaries and consequences. Ransomware threatening patient safety in healthcare is a different risk picture from intellectual-property theft in automotive. Naming the industry up front lets every later step — assets, threat actor, impact — be realistic rather than generic.

From Quiz: ISM / Threat & Impact Modelling | Updated: Jun 20, 2026