Which of the following is an example of reputational business impact?
A.
While the breach was reported in a timely manner to the CEO, the CFO and CISO blamed each other in public, resulting in a loss of public confidence that led the board to replace all three.
B.
The cloud provider fails to report a breach of customer personal data from an unsecured server, resulting in GDPR fines of 10 million euros.
C.
A distributed denial of service (DDoS) attack renders the customer’s cloud inaccessible for 24 hours, resulting in millions in lost sales.
D.
A hacker using a stolen administrator identity brings down the Software as a Service (SaaS) sales and marketing systems, resulting in the inability to process customer orders or manage customer relationships.
Reputational business impact refers to the effect on a company’s reputation and public perception following an incident or action. Option A is an example of reputational impact because the public dispute among high-level executives after a breach was reported reflects poorly on the company’s governance and crisis management capabilities. This public display of discord can erode stakeholder trust and confidence, potentially leading to a decline in the company’s market value, customer base, and ability to attract and retain talent.
References = The answer is derived from the understanding of reputational risk and its consequences on businesses, as discussed in various cloud auditing and security resources. Reputational impact is a key consideration in the governance of cloud operations, which is a topic covered in the CCAK curriculum1234.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit