PECB ISO-IEC-27035-Lead-Incident-Manager Exam - Topic 4 Question 5 Discussion

Actual exam question for PECB's ISO-IEC-27035-Lead-Incident-Manager exam

Question #: 5
Topic #: 4

[All ISO-IEC-27035-Lead-Incident-Manager Questions]

What is the first step in planning the response to information security incidents?

AAssigning the response class based on incident information

BDeveloping processes that support the response to information security incidents

CDefining the response classification

Show Suggested Answer

Suggested Answer: C

by Francoise at Nov 25, 2025, 11:38 AM

Limited Time Offer

25%

Off

Get Premium ISO-IEC-27035-Lead-Incident-Manager Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Larae

10 hours ago

Wait, I thought assigning the response class was the first step?

upvoted 0 times

...

Iesha

6 days ago

I disagree, I think B is more important for a solid plan.

upvoted 0 times

...

Catalina

11 days ago

It's definitely C, defining the response classification.

upvoted 0 times

...

Rochell

16 days ago

I'm going with C. Defining the response classification is the foundation, like building a house - you can't start hammering nails until you've got the blueprints.

upvoted 0 times

...

Alline

21 days ago

Haha, the correct answer is C. Defining the response classification is like choosing the right tool for the job - you gotta know what you're working with before you can fix it.

upvoted 0 times

...

Kristel

26 days ago

B) Developing processes that support the response to information security incidents. Sounds like a good idea, but maybe we should figure out the classification first.

upvoted 0 times

...

Carry

1 month ago

A) Assigning the response class based on incident information. Gotta know what we're dealing with before we can plan the response.

upvoted 0 times

...

Millie

1 month ago

C) Defining the response classification is the first step. It's like deciding the level of emergency before jumping into action.

upvoted 0 times

...

Elden

1 month ago

I thought it was about defining the response classification too, but I also remember something about the importance of processes in the overall plan.

upvoted 0 times

...

Geoffrey

2 months ago

I feel like developing processes is crucial, but I can't recall if it should be the very first step in the response plan.

upvoted 0 times

...

Enola

2 months ago

I think the key here is to focus on the "first step" part of the question. The logical first step would be to define the response classification, so I'm going with option C.

upvoted 0 times

...

Matthew

2 months ago

I'm feeling a little lost on this one. Is it developing the processes or defining the response classification? I need to review my notes again before answering.

upvoted 0 times

...

Evelynn

2 months ago

I think defining the response classification is crucial first.

upvoted 0 times

...

Eliseo

2 months ago

I remember a practice question that emphasized the importance of assigning the response class first, but I could be mixing it up with another topic.

upvoted 0 times

...

Carissa

3 months ago

Okay, I've got this. The first step is to assign the response class based on the incident information, so I'm going to go with option A.

upvoted 0 times

...

Leslee

3 months ago

I think the first step is defining the response classification, but I'm not entirely sure if that comes before developing processes.

upvoted 0 times

...

Colette

3 months ago

I'm a bit unsure about this one. Is it defining the response classification or developing the processes to support the response? I'll have to think this through carefully.

upvoted 0 times

...

Colby

3 months ago

Hmm, this seems like a pretty straightforward question. I think the first step would be to define the response classification, so I'll go with option C.

upvoted 0 times

Audra

2 months ago

I agree, defining the response classification makes sense.

upvoted 0 times

...