Isaca Exam CISM Topic 5 Question 26 Discussion

Actual exam question for Isaca's Certified Information Security Manager exam

Question #: 26
Topic #: 5

[All Certified Information Security Manager Questions]

During a security assessment, an information security manager finds a number of security patches were not installed on a server hosting a critical business application. The application owner did not approve the patch installation to avoid interrupting the application. Which of the

following should be the information security manager's FIRST course of action?

ADetermine mitigation options with IT management

BCommunicate the potential impact to the application owner.

CReport the risk to the information security steering committee.

DEscalate the risk to senior management.

Show Suggested Answer

Suggested Answer: B

by Raul at May 06, 2022, 06:26 PM

Limited Time Offer

25%

Off

Get Premium CISM Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!