Great News!
Many students who study using our platform have reported that a large number of the practice questions here are very similar to those that appear in real exams. View Courses
Many students who study using our platform have reported that a large number of the practice questions here are very similar to those that appear in real exams. View Courses
A company had a system compromise, and the engineering team resolved the issue after 12 hours. Which of the following information will MOST likely be requested by the Chief Information Officer (CIO) to understand the issue and its resolution?
Correct Answer: a. A root cause analysis
A root cause analysis (RCA) is the most likely information the CIO will request because it explains what caused the system compromise, how it occurred, and what actions were taken to resolve it. An RCA provides a comprehensive understanding of the issue, helping leadership assess risk, prevent future incidents, and ensure proper remediation.
Why the other options are incorrect:
b. Application documentation:
While useful for understanding the system, application documentation doesn’t explain the incident or its resolution, making it less relevant for post-incident reporting.
c. Acquired evidence:
Evidence is important for forensic investigation but is more technical and detailed than what the CIO typically requires to understand the overall issue and resolution.
d. Application logs:
Logs provide raw data but require analysis to be meaningful; the CIO is more interested in summarized findings like an RCA rather than raw logs.
Discover a range of courses designed to provide you with the knowledge and skills needed to excel in your chosen field.
You don’t need one month to study and pass your test.
With Prepsaret, it takes you a few days to grasp all the concepts needed to pass your exams