Which of the following is the BEST way to help ensure an organization's risk appetite will be considered as part of the risk treatment process?
Correct Answer:
D
Which of the following is the BEST course of action for an information security manager to align security and business goals?
Correct Answer:
D
Which of the following is the PRIMARY objective of incident triage?
Correct Answer:
C
Incident triage is the process of quickly assessing an incident and determining its severity in order to prioritize the response. This involves categorizing the events based on their potential impact, which helps to determine the right response and the most effective use of resources. It also helps to identify potential threats and vulnerabilities, and to coordinate communications and response activities.
A security incident has been reported within an organization. When should an inforrnation security manager contact the information owner? After the:
Correct Answer:
A
Which of the following BEST indicates the effectiveness of a recent information security awareness campaign delivered across the organization?
Correct Answer:
A