Which of the following is BEST carried out immediately after a security breach is discovered?

Which of the following is BEST carried out immediately after a security breach is discovered?

A security analyst informs the Chief Executive Officer (CEO) that a security breach has just
occurred. This results in the Risk Manager and Chief Information Officer (CIO) being caught
unaware when the CEO asks for further information. Which of the following strategies should be
implemented to ensure the Risk Manager and CIO are not caught unaware in the future?

A security analyst informs the Chief Executive Officer (CEO) that a security breach has just
occurred. This results in the Risk Manager and Chief Information Officer (CIO) being caught
unaware when the CEO asks for further information. Which of the following strategies should be
implemented to ensure the Risk Manager and CIO are not caught unaware in the future?

Requiring technicians to report spyware infections is a step in which of the following?

Requiring technicians to report spyware infections is a step in which of the following?

Which of the following is the BEST approach to perform risk mitigation of user access control
rights?

An internal auditor is concerned with privilege creep that is associated with transfers inside the
company. Which mitigation measure would detect and correct this?

An internal auditor is concerned with privilege creep that is associated with transfers inside the
company. Which mitigation measure would detect and correct this?

A security administrator is responsible for performing periodic reviews of user permission settings
due to high turnover and internal transfers at a corporation. Which of the following BEST describes
the procedure and security rationale for performing such reviews?