Isaca Certified in Risk and Information Systems Control CRISC Question # 195 Topic 20 Discussion
CRISC Exam Topic 20 Question 195 Discussion:
Question #: 195
Topic #: 20
An organization learns of a new ransomware attack affecting organizations worldwide. Which of the following should be done FIRST to reduce the likelihood of infection from the attack?
A.
Identify systems that are vulnerable to being exploited by the attack.
B.
Confirm with the antivirus solution vendor whether the next update will detect the attack.
C.
Verify the data backup process and confirm which backups are the most recent ones available.
D.
Obtain approval for funding to purchase a cyber insurance plan.
The first step to reduce the likelihood of infection from the attack is to identify systems that are vulnerable to being exploited by the attack. This would help the organization to assess the scope and severity of the risk, and to prioritize the systems that need immediate protection. Identifying systems that are vulnerable to being exploited by the attack would also help the organization to apply the appropriate patches, updates, or configurations to prevent or mitigate the attack, and to isolate or disconnect the systems that are already infected or compromised. References = Risk and Information Systems Control Study Manual, 7th Edition, Chapter 2, Section 2.1.2, page 60123
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit