The CIO of an enterprise learns the payroll server of a competitor has been the victim of ransomware. To help plan for the possibility of ransomed corporate data, what should be the CIO's FIRST course of action?
A.
Back up corporate data to a secure location.
B.
Develop a policy to address ransomware.
C.
Require development of key risk indicators (KRIs).
D. Request a targeted risk assessment.
The CIO's FIRST course of action, upon learning about the ransomware attack on the competitor's payroll server, should be to request a targeted risk assessment.
A targeted risk assessment will help the enterprise understand its current vulnerabilities and exposure to ransomware attacks. It can identify specific weaknesses in the organization's systems, processes, and controls that could make it susceptible to similar attacks. This assessment provides a comprehensive understanding of the risks associated with ransomware and enables the organization to prioritize mitigation efforts effectively.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.CGEIT Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
shiowbah
9 months, 3 weeks agoSuperMax
10 months, 2 weeks ago