An information security manager could prevent this situation by:

The systems administrator did not immediately notify the security officer about a malicious attack.
An information security manager could prevent this situation by:

The systems administrator did not immediately notify the security officer about a malicious attack.
An information security manager could prevent this situation by:

A.
periodically testing the incident response plans.

B.
regularly testing the intrusion detection system (IDS).

C.
establishing mandatory training of all personnel.

D.
periodically reviewing incident response procedures.

Explanation:

Security incident response plans should be tested to find any deficiencies and improve existing
processes. Testing the intrusion detection system (IDS) is a good practice but would not have
prevented this situation. All personnel need to go through formal training to ensure that they
understand the process, tools and methodology involved in handling security incidents. However,
testing of the actual plans is more effective in ensuring the process works as intended. Reviewing
the response procedures is not enough; the security response plan needs to be tested on a
regular basis.



Leave a Reply 0

Your email address will not be published. Required fields are marked *