CompTIA CySA+ (CS0-003) — Question 397

To comply with regulatory requirements, the Chief Executive Officer (CEO) must lead the company through simulations to find which steps are missing m emergency situations or incident processes. Which of the following should the CEO do?

Answer options

• A. Implement the incident response plan.
• B. Leverage the appropriate playbook.
• C. Develop a business continuity plan.
• D. Perform a tabletop exercise.

Correct answer: D

Explanation

The correct answer is D, as conducting a tabletop exercise allows the CEO to simulate emergency scenarios and evaluate the effectiveness of the incident response processes. Option A is incorrect because simply implementing the plan does not identify any missing steps. Option B is not the best choice, as leveraging a playbook does not specifically test the incident response in a simulated environment. Option C, while important, focuses on planning rather than assessing current processes through simulation.