Multiple Choice
A hospital's security team recently determined its network was breached and patient data was accessed by an external entity. The Chief Information Security Officer (CISO) of the hospital approaches the executive management team with this information, reports the vulnerability that led to the breach has already been remediated, and explains the team is continuing to follow the appropriate incident response plan. The executive team is concerned about the hospital's brand reputation and asks the CISO when the incident should be disclosed to the affected patients. Which of the following is the MOST appropriate response?
A) When it is mandated by their legal and regulatory requirements
B) As soon as possible in the interest of the patients
C) As soon as the public relations department is ready to be interviewed
D) When all steps related to the incident response plan are completed
E) Upon the approval of the Chief Executive Officer (CEO) to release information to the public
Correct Answer:
Verified
Correct Answer:
Verified
Q170: A technician is reviewing the following log:
Q171: A software development team is conducting functional
Q172: A Chief Information Security Officer (CISO) is
Q173: A government contractor was the victim of
Q174: A systems analyst is concerned that the
Q176: Company.org has requested a black-box security assessment
Q177: During the deployment of a new system,
Q178: A company has made it a spending
Q179: An organization is moving internal core data-processing
Q180: A company is not familiar with the