The computer security incident response team (CSIRT) of an organization disseminates detailed descriptions of

adminJanuary 30, 2019

The computer security incident response team (CSIRT) of an organization disseminates detailed descriptions of recent threats. An IS auditors GREATEST concern should be that the users might:

A. use this information to launch attacks.

B. forward the security alert.

C. implement individual solutions.

D. fail to understand the threat.

Explanation:

An organizations computer security incident response team (CSIRT) should disseminate recent threats, security guidelines and security updates to the users to assist them in understanding the security risk of errors and omissions. However, this introduces the risk that the users may use this information to launch attacks, directly or indirectly. An IS auditor should ensure that the CSIRT is actively involved with users to assist them in mitigation of risks arising from security failures and to prevent additional security incidents resulting from the same threat. Forwarding the security alert is not harmful to the organization, implementing individual solutions is unlikely and users failing to understand the threat would not be a serious concern.

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

ISACA Exam Questions

Free ISACA Study Guide

The computer security incident response team (CSIRT) of an organization disseminates detailed descriptions of

Leave a Reply Cancel reply