CRM 16, 4.11 "...clear lines of authorized and authoritative communications channels need to be defined in advance."
You must define it before incident. Question is asking about during incident.
When providing updates during a security incident, the most important factor is validating the reliability of information prior to dissemination. It is crucial to ensure that the information being shared is accurate, verified, and reliable. This helps in maintaining the credibility and trust of the public, as well as preventing the spread of misinformation that can potentially cause panic or confusion. While responding immediately to questions from the public and ensuring timely incident information to internal stakeholders are also important, the accuracy and reliability of the information should be the top priority. Designating a communications representative can also be helpful in streamlining the communication process, but it is not as critical as ensuring the reliability of information.
B. Validating the reliability of information prior to dissemination
It is crucial to ensure that the information you share with the public, internal stakeholders, and the media is accurate and reliable. Rushing to provide information without proper validation can lead to misinformation, confusion, and potentially make the situation worse. Designating a communications representative (C) and ensuring timely incident information to internal stakeholders (D) are important as well, but they should be done in conjunction with the careful validation of information. Responding immediately to questions from the public (A) is also important, but it should be done based on accurate and validated information to maintain trust and credibility during a security incident.
The most important thing to keep in mind when giving updates is to give accurate updates, answer (B) Validating the reliability of information prior to dissemination.
Rationale:
(A) Responding immediately to questions from the public - giving answers to the public prematurely can make things worse
(C) Designating a communications representative - If the rep gives bad information this will make things worse.
(D) Ensuring timely incident information to internal stakeholders - timely updates don't matter if the information is incorrect.
This section is not available anymore. Please use the main Exam Page.CISM Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
justx
10 months, 2 weeks agoMarcelus1714
1 year, 3 months agoRaven89
8 months, 1 week agoManix
1 year, 5 months agoSalilgen
1 year, 4 months agokoala_lay
1 year, 9 months agooluchecpoint
1 year, 10 months agoAaronS1990
1 year, 10 months agoGoseu
1 year, 11 months agoAlexJacobson
1 year, 5 months agorichck102
2 years agodark_3k03r
2 years, 2 months agoTsubasa1234
2 years, 3 months agoccKane
2 years, 4 months agoccKane
2 years, 4 months ago