Which of the following is MOST important to do after a security incident has been verified? A. Notify the appropriate law enforcement authorities of the incident. B. Follow the escalation process to inform key stakeholders. C. Prevent the incident from creating further damage to the organization. D. Contact forensic investigators to determine the root cause. Â Suggested Answer: B This question is in CISM exam For getting Certified Information Security Manager Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by ISACA. The website does not contain actual questions and answers from ISACA's Certification Exams. Trademarks, certification & product names are used for reference only and belong to ISACA.
Please login or Register to submit your answer
