Exam CISM topic 1 question 984 discussion

B - provides a more targeted approach by identifying weaknesses in your systems and processes. This assessment informs your defense strategy and helps prioritize preventive measures whereas C is not directly address an organization’s specific vulnerabilities.

C- because choice B would yield nothing related to ransomware. Choice D is not a guarantee and the question is about preventive/proactive measures.

Trend Analysis seems to be a better option to select out of the choices here.

B. is correct because (C) Trend analysis of ransomware attacks might show fluctuations, including decreases, in the frequency of ransomware incidents over time. In such cases, solely relying on trend analysis might not be sufficient to support the business case for implementing an anti-ransomware solution. A more comprehensive approach would involve considering various factors, including the potential impact and cost of ransomware attacks, the evolving tactics used by ransomware operators, industry-specific threats, regulatory requirements, and the organization's risk tolerance. Additionally, conducting a threat and vulnerability assessment (Option B) could provide a deeper understanding of the specific risks and vulnerabilities faced by the organization, helping to tailor the implementation of anti-ransomware solutions effectively. Therefore, while trend analysis of ransomware attacks can provide valuable insights, it should be complemented by other assessments and considerations to build a robust business case for implementing anti-ransomware solutions.

I'm gonna go on a limb and say it's D. Because option D is basically talking about presenting ROI - a value of implementing a solution. And when you're making a business case ROI is the key thing.

directly applicable to organizations needs - Trends are just that they my not apply to your business directly.

i vote ....C. Trend analysis of ransomware attacks

All of the options listed could potentially support a business case to implement an anti-ransomware solution, but the best option would be B. A threat and vulnerability assessment. A threat and vulnerability assessment helps identify the specific risks and vulnerabilities that a business may face in relation to ransomware attacks. By conducting such an assessment, the business can gain a clear understanding of its current security posture and identify any weaknesses or gaps that need to be addressed. This information can then be used to make a compelling case for implementing an anti-ransomware solution, as it provides concrete evidence of the potential risks and the need for proactive measures to mitigate them.

Risk assessment (threat & vulnerability) is the most compelling case to get approval for an anti-ransomware investment. Industry benchmark or trend analysis do not make sense unless you present evidence of how it is impacting the organization. Backups are the most effective defense against r/w attacks, reducing them makes little sense unless you understand the impact.