CompTIA CySA+ (CS0-001) — Question 182

The computer incident response team at a multinational company has determined that a breach of sensitive data has occurred in which a threat actor has compromised the organization's email system. Per the incident response procedures, this breach requires notifying the board immediately. Which of the following would be the BEST method of communication?

Answer options

• A. Post of the company blog
• B. Corporate-hosted encrypted email
• C. VoIP phone call
• D. Summary sent by certified mail
• E. Externally hosted instant message

Correct answer: C

Explanation

The VoIP phone call is the quickest way to ensure that the board receives the information in real-time and allows for immediate discussion. Other options like a blog post or certified mail would cause delays, while encrypted email may not be as instantaneous as a phone call, and an external instant message is not secure for such sensitive communication.