Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us [email protected]
Menu

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
Isaca Discussions

Exam CISM topic 1 question 164 discussion

Actual exam question from Isaca's CISM
Question #: 164
Topic #: 1
[All CISM Questions]

Which is the MOST important requirement when establishing a process for responding to zero-day vulnerabilities?

  • A. The IT team updates antivirus signatures on user systems.
  • B. The IT team implements an emergency patch deployment process.
  • C. Business users stop using the impacted application until a patch is released.
  • D. The information security team implements recommended workarounds.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Prospect57 at Jan. 18, 2023, 2:14 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
Prospect57
Highly Voted 1 year, 3 months ago
Selected Answer: D
D should be correct. I missed this one, but after thinking about it, it make sense. a Zero-Day attack means that there are no anti-virus methods for it and there are no patches available to fix the problem. C is disrupting operations (which is never the answer) leaving us with D. Just the thought of selecting "work-around" as an answer makes me not feel good, but in this case, I understand.
upvoted 7 times
...
03allen
Most Recent 1 week, 6 days ago
My concern to D is how security team provides an IT workaround solution? It should be the business team works with IT Infrastructure team, security can help to evaluate it.
upvoted 1 times
...
Marcelus1714
2 months, 4 weeks ago
Selected Answer: D
"A" does not make sense if it's a Zero day issue "B" does not make sense, there is no patch "C" is not realistic... D. is the correct one
upvoted 1 times
...
SHERLOCKAWS
4 months, 3 weeks ago
Selected Answer: D when a zero-day vulnerability breaks out then no patch is immediately available, so tailored containment and mitigation workarounds are applied e.g. Log4J
upvoted 1 times
...
sphenixfire
8 months ago
Selected Answer: B
Its regarding a process not the response itself. Have a emergeny patch process is essential to fox asap a patch is available
upvoted 1 times
...
richck102
11 months, 2 weeks ago
D. The information security team implements recommended workarounds.
upvoted 2 times
...
mad68
1 year ago
Selected Answer: B
Zero-day vulnerabilities are security vulnerabilities that are discovered by attackers before the software vendor becomes aware of them. These vulnerabilities pose a significant risk as there is no available patch or fix from the vendor at the time of discovery. Therefore, it is crucial to have an effective and efficient process in place to respond to zero-day vulnerabilities. Implementing an emergency patch deployment process allows the IT team to rapidly deploy patches or temporary fixes to mitigate the risk associated with the zero-day vulnerability. This helps to close the security gap and protect systems and data from potential attacks.
upvoted 2 times
DERCHEF2009
11 months, 2 weeks ago
Dude zero day vulnerability = no patch available.
upvoted 2 times
...
...
bambs
1 year, 1 month ago
Selected Answer: B
Of the options listed, implementing an emergency patch deployment process (Option B) is the most important requirement when establishing a process for responding to zero-day vulnerabilities. This ensures that patches are deployed as soon as they become available, reducing the time window for attackers to exploit the vulnerability.
upvoted 1 times
dedfef
1 year, 1 month ago
there are no patches for 0 day vulnerabilities. you need workarounds
upvoted 6 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel