Learn best practices for sharing information during an information security incident investigation, ensuring data protection and upholding the principle of least privilege.
Table of Contents
Question
When investigating an information security incident details of the incident should be shared:
A. widely to demonstrate positive intent
B. only as needed
C. only with management
D. only with internal audit
Answer
B. only as needed
Explanation
Sharing incident details follows the principle of least privilege, limiting disclosure to those directly involved in the investigation or remediation. This minimizes exposure and potential damage.
Isaca Certified Information Security Manager CISM certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Isaca Certified Information Security Manager CISM exam and earn Isaca Certified Information Security Manager CISM certification.