Answer should be "D".
The key word in the question is "detect" incidents.
A. speaks to incident response (not detection).
B. again speaks to response (not detection).
C. again speaking to incident response (not detection).
D. "threat awareness and timely reporting" speaks to detection.
End-user education primarily enhances awareness and reporting, but it relies heavily on the vigilance and knowledge of individuals, which can vary greatly and may not always be reliable. Regular testing helps identify gaps in the incident response program, including detection capabilities. Testing ensures not only that incidents are detected but also that the organisation is ready to respond effectively.
Regular testing of the incident response program, including simulations and exercises, is a proactive and systematic approach to assessing the effectiveness of an organization's ability to detect and respond to security incidents. This testing helps identify weaknesses, strengths, and areas for improvement in the incident detection and response process.
Option B
D. Educating end users on threat awareness and timely reporting
upvoted 2 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Eruza89
3 months, 4 weeks agoSalilgen
6 months, 3 weeks agojcisco123
8 months, 3 weeks agoiTmarcus
9 months, 1 week agorichck102
1 year, 2 months ago