New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

PECB Exam ISO-IEC-27001-Lead-Implementer Topic 1 Question 43 Discussion

Actual exam question for PECB's ISO-IEC-27001-Lead-Implementer exam
Question #: 43
Topic #: 1
[All ISO-IEC-27001-Lead-Implementer Questions]

Once they made sure that the attackers do not have access in their system, the security administrators decided to proceed with the forensic analysis. They concluded that their access security system was not designed tor threat detection, including the detection of malicious files which could be the cause of possible future attacks.

Based on these findings. Texas H$H inc, decided to modify its access security system to avoid future incidents and integrate an incident management policy in their Information security policy that could serve as guidance for employees on how to respond to similar incidents.

Based on the scenario above, answer the following question:

Texas M&H Inc. decided to integrate the incident management policy to the existent information security policy. How do you define this situation?

Show Suggested Answer Hide Answer
Suggested Answer: A

Contribute your Thoughts:

Alverta
3 months ago
Option C? What is this, the 90s? We're in the digital age, people. Integration is the way to go. Texas M&H Inc. is on the right track.
upvoted 0 times
Salina
2 months ago
A) Acceptable, but only if the incident management policy addresses environmental, or health and safety issues
upvoted 0 times
...
Eloisa
2 months ago
Option C? What is this, the 90s? We're in the digital age, people. Integration is the way to go. Texas M&H Inc. is on the right track.
upvoted 0 times
...
Graciela
2 months ago
A) Acceptable, the incident management policy may be integrated into the overall information security policy of the organization
upvoted 0 times
...
...
Bernadine
3 months ago
I see your point, Keith. But I still think option A is the most practical choice in this situation. It would ensure that the policy is easily accessible to all employees.
upvoted 0 times
...
Jackie
3 months ago
You know, if they had just integrated the incident management policy from the start, they wouldn't be in this mess. Better late than never, I guess!
upvoted 0 times
France
1 months ago
A) Acceptable, the incident management policy may be integrated into the overall information security policy of the organization
upvoted 0 times
...
Joaquin
2 months ago
You're right, it's better late than never to integrate the incident management policy.
upvoted 0 times
...
Vivan
2 months ago
C) Unacceptable, the incident management policy should be drafted as a separate document in order to be clear and effective
upvoted 0 times
...
Justine
3 months ago
A) Acceptable, the incident management policy may be integrated into the overall information security policy of the organization
upvoted 0 times
...
...
Keith
3 months ago
I disagree. I think option C is the way to go. Having a separate document for the incident management policy would make it clearer and more effective.
upvoted 0 times
...
Quentin
3 months ago
A all the way! Keeping everything in one place makes it easier for the employees to refer to and follow. Who wants to go searching for separate documents, am I right?
upvoted 0 times
Leota
3 months ago
I agree, having everything in one place definitely makes it easier for everyone to access and follow.
upvoted 0 times
...
Ammie
3 months ago
A) Acceptable, the incident management policy may be integrated into the overall information security policy of the organization
upvoted 0 times
...
...
Melynda
3 months ago
I agree with Joanne. It would streamline processes and ensure that all employees are aware of how to respond to incidents.
upvoted 0 times
...
Leonor
4 months ago
Option B is just nonsense. The incident management policy has nothing to do with environmental or health and safety issues. C is way too rigid - keeping it separate isn't necessary.
upvoted 0 times
Dahlia
3 months ago
C) Unacceptable, the incident management policy should be drafted as a separate document in order to be clear and effective
upvoted 0 times
...
Anisha
3 months ago
A) Acceptable, the incident management policy may be integrated into the overall information security policy of the organization
upvoted 0 times
...
...
Joanne
4 months ago
I think option A is the best choice. It makes sense to integrate the incident management policy into the overall information security policy.
upvoted 0 times
...
Juliana
4 months ago
I think the correct answer is A. Integrating the incident management policy into the overall information security policy makes sense to ensure a cohesive and comprehensive approach to security.
upvoted 0 times
Coral
3 months ago
I see your point, but having it integrated can also help with easier access and understanding for employees.
upvoted 0 times
...
Portia
3 months ago
C) Unacceptable, the incident management policy should be drafted as a separate document in order to be clear and effective
upvoted 0 times
...
Antonio
3 months ago
I agree, it helps to streamline processes and ensure consistency in security measures.
upvoted 0 times
...
Marge
3 months ago
A) Acceptable, the incident management policy may be integrated into the overall information security policy of the organization
upvoted 0 times
...
...

Save Cancel