New Year Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

  1. Home
  2. Discussions
  3. ECCouncil
  4. ECIH
  5. 212-89 Discussions
  6. 212-89 Exam Topic 8 Question 79 Discussion

ECCouncil EC Council Certified Incident Handler (ECIH v3) 212-89 Question # 79 Topic 8 Discussion

 ECCouncil Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

ECCouncil EC Council Certified Incident Handler (ECIH v3) 212-89 Question # 79 Topic 8 Discussion

212-89 Exam Topic 8 Question 79 Discussion:
Question #: 79
Topic #: 8

A mid-sized healthcare organization undergoing digital modernization is working toward ISO/IEC 27001 certification. During a readiness review, the CISO identifies gaps: staff lack clear channels to raise concerns about system weaknesses, outcome tracking after adverse events is inconsistent, and there is no formalized way to assess what went right or wrong following disruptions. To comply with ISO/IEC 27001 Annex A.16, which action should be prioritized?
A.

Conduct tabletop exercises to simulate insider threat scenarios.

B.

Implement a centralized SIEM dashboard for real-time alerting.

C.

Define and implement structured procedures for flaw escalation and integrating post-incident response knowledge.

D.

Deploy EDR agents across endpoints for automatic quarantine.

Get Premium 212-89 Questions
Actual exam question for ECCouncil 212-89 exam by Eris9188 at Jan 15, 2026, 3:02:01 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next