Which of the following is a correct statement about incident management? (Wentz QOTD)
A. The security team will participate in all incidents.
B. All incidents should be investigated and remediated.
C. All detected incidents should be reported to stakeholders.
D. Incident detection doesn’t include human reporting.
Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.
My suggested answer is B. All incidents should be investigated and remediated.
Wentz’s book, The Effective CISSP: Security and Risk Management, helps CISSP and CISM aspirants build a solid conceptual security model. It is a tutorial for information security and a supplement to the official study guides for the CISSP and CISM exams and an informative reference for security professionals.
Reference
以下哪項是關於事故管理的正確說法? (Wentz QOTD)
A. 安全團隊將參與所有事故。
B. 應對所有事故進行調查和補救。
C. 所有檢測到的事故都應報告給利益相關者。
D. 事故偵測不包括人員通報。