Learn the crucial first step an information security manager should take when faced with a potential emerging threat according to the CISM exam.
Table of Contents
Question
An information security manager learns through a threat intelligence service that the organization may be targeted for a major emerging threat. Which of the following is the information security manager’s FIRST course of action?
A. Conduct an information security audit
B. Perform a gap analysis
C. Validate the relevance of the information
D. Inform senior management
Answer
C. Validate the relevance of the information
Explanation
Before taking any further steps, the information security manager must first confirm the credibility and applicability of the threat intelligence to the organization. This ensures that subsequent actions are based on accurate and relevant information.
Isaca Certified Information Security Manager CISM certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Isaca Certified Information Security Manager CISM exam and earn Isaca Certified Information Security Manager CISM certification.