A security team conducts a lessons-learned meeting after struggling to determine who should conduct the next steps following a security event. Which of the following should the team create to address this issue?
C) incident response plan
Let's go through the process of elimination
A and D are both related to vendor contracts. SLA and MOU. B doesn't apply since we don't anything stating the incident was caused as a result of faulty change management. C is the only logical choice. With a clearly defined incident response plan, there won't be any finger pointing or asking who is in charge of what. Everyone will have clearly defined roles
To address the issue of determining who should conduct the next steps following a security event, the security team should create:
C. Incident response plan
Explanation:
An incident response plan outlines the procedures, roles, and responsibilities for responding to security incidents within an organization. It provides clear guidance on how to handle different types of incidents, including who is responsible for what actions during and after an incident.
This section is not available anymore. Please use the main Exam Page.CS0-003 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
[Removed]
Highly Voted 5 months, 1 week agoAlizade
Most Recent 5 months, 3 weeks agonmap_king_22
8 months agokmordalv
8 months, 1 week ago