An organization has verified that its customer information was recently exposed. Which of the following is the
FIRST step a security manager should take in this situation?
A.
Inform senior management.
B.
Determine the extent of the compromise.
C.
Report the incident to the authorities.
D.
Communicate with the affected customers.
Explanation:
Before reporting to senior management, affected customers or the authorities, the extent of the exposure needs to be assessed.
The word “expose” presents an ambiguous case. As such, the nature and severity of the exposure in consideration of the culture of the organisation “ab Initio” may provoke the decision of the security manager. It may be logical to put (inform) the senior management on notice, while the extent of the compromise is being determined. In any case the extent of the compromise plays a crucial role, and it is a must-document for the attention of the senior management.
0
0