ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 1465 discussion

Actual exam question from Isaca's CISA
Question #: 1465
Topic #: 1
[All CISA Questions]

Which of the following is MOST important for an IS auditor to confirm when reviewing an organization's incident response management program?

  • A. All identified incidents are escalated to the CEO and the CISO.
  • B. The alerting tools and incident response team can detect incidents.
  • C. Incident response is within defined service level agreements (SLAs).
  • D. All incidents have a severity level assigned.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Swallows at May 29, 2024, 12:52 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Swallows
1 month, 2 weeks ago
Selected Answer: B
While assigning severity levels to incidents (option D) is an important aspect of incident response management, it is secondary to the ability to detect incidents in the first place. Without effective detection capabilities, the organization may struggle to appropriately assess and prioritize incidents based on their severity levels. Therefore, ensuring that alerting tools and the incident response team can detect incidents should take precedence during the audit of an organization's incident response management program.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago