Following a major security incident that resulted in a significant loss of revenue and extended loss of server availability, a new Chief Information Security Officer (CISO) conducts a root-cause analysis.
Which of the following additional steps should the CISO take to mitigate the chance of a recurrence?
A. Capture recommendations from a lessons-learned session with key management.
B. Install additional detective controls to facilitate a better root cause analysis in future incidents.
C. Purchase cyber-incident insurance, specifically covering the root cause.
D. Compile a report containing all help desk tickets received during the incident.
How to PASS CAS-004 in First Attempt?FULL Printable PDF and Software. VALID exam to help you PASS. |