ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISM All Questions

View all questions & answers for the CISM exam
Go to Exam

Exam CISM topic 1 question 443 discussion

Actual exam question from Isaca's CISM
Question #: 443
Topic #: 1
[All CISM Questions]

Which of the following should be the FIRST step of incident response procedures?

  • A. Classify the event depending on severity and type
  • B. Perform a risk assessment to determine the business impact
  • C. Evaluate the cause of the control failure
  • D. Identify if there is a need for additional technical assistance
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by richck102 at June 28, 2023, 5:16 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
oluchecpoint
9 months, 1 week ago
Selected Answer: B
Option B
upvoted 1 times
...
xcjxcj
11 months ago
Selected Answer: B
B. Perform a risk assessment to determine the business impact After evaluation, then you know the severity
upvoted 1 times
...
chanke
1 year, 6 months ago
Selected Answer: A
The first step of incident response procedures should be A. Classify the event depending on severity and type. This is important because it will help the incident response team to prioritize the incident and determine the appropriate course of action. For example, a minor incident may only require a few people to investigate, while a major incident may require the entire incident response team to be activated.
upvoted 2 times
...
richck102
1 year, 6 months ago
Selected Answer: A
A. Classify the event depending on severity and type
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel