Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

PECB Exam ISO-IEC-27001-Lead-Implementer Topic 1 Question 49 Discussion

Actual exam question for PECB's ISO/IEC 27001 Lead Implementer exam
Question #: 49
Topic #: 1
[All ISO/IEC 27001 Lead Implementer Questions]

Once they made sure that the attackers do not have access in their system, the security administrators decided to proceed with the forensic analysis. They concluded that their access security system was not designed tor threat detection, including the detection of malicious files which could be the cause of possible future attacks.

Based on these findings. Texas H$H inc, decided to modify its access security system to avoid future incidents and integrate an incident management policy in their Information security policy that could serve as guidance for employees on how to respond to similar incidents.

Based on the scenario above, answer the following question:

Texas M&H Inc. decided to integrate the incident management policy to the existent information security policy. How do you define this situation?

Show Suggested Answer Hide Answer
Suggested Answer: A

Contribute your Thoughts:

Muriel
15 days ago
I agree with option A. Consolidating the policies streamlines the security framework and makes it easier to implement.
upvoted 0 times
...
Elmira
19 days ago
Wait, does this mean they'll have to deal with more paperwork now? I hope they don't forget to add a 'Pizza Fridays' policy as well.
upvoted 0 times
...
Margart
20 days ago
Hmm, I think option A is the right choice. Integrating the policies shows a holistic approach to security.
upvoted 0 times
...
Tamekia
21 days ago
I'm not sure about this. Separating the incident management policy might be better to keep it focused and effective.
upvoted 0 times
Cecilia
11 hours ago
I agree, keeping it separate can help maintain clarity and effectiveness.
upvoted 0 times
...
Lindsey
4 days ago
C) Unacceptable, the incident management policy should be drafted as a separate document in order to be clear and effective
upvoted 0 times
...
Dahlia
13 days ago
A) Acceptable, the incident management policy may be integrated into the overall information security policy of the organization
upvoted 0 times
...
...
Blair
24 days ago
I disagree. I believe C) is the best option as having a separate incident management policy can prevent confusion and ensure that it is clearly defined and effective.
upvoted 0 times
...
Brinda
1 months ago
The integration of the incident management policy into the overall information security policy makes sense. It ensures a comprehensive approach to security management.
upvoted 0 times
Reita
8 days ago
A) Acceptable, the incident management policy may be integrated into the overall information security policy of the organization
upvoted 0 times
...
Kaycee
13 days ago
C) Unacceptable, the incident management policy should be drafted as a separate document in order to be clear and effective
upvoted 0 times
...
Markus
16 days ago
A) Acceptable, the incident management policy may be integrated into the overall information security policy of the organization
upvoted 0 times
...
...
Youlanda
1 months ago
I agree with Herschel. Having the incident management policy as part of the overall information security policy can ensure that all security measures are aligned and easily accessible.
upvoted 0 times
...
Herschel
1 months ago
I think A) is acceptable because integrating the incident management policy into the information security policy can provide clear guidance for employees.
upvoted 0 times
...

Save Cancel