CompTIA CySA+ (CS0-003) — Question 401

An organization’s security operations center (SOC) team prioritizes confidentiality and integrity over monetary considerations. The SOC team contains a quickly progressing ransomware incident. Which of the following factors motivated the SOC team to take this action? (Choose two.)

Answer options

• A. Attack vector
• B. Risk appetite
• C. Scope
• D. Impact
• E. Common Vulnerability Scoring System (CVSS) score
• F. Asset value

Correct answer: B, D

Explanation

The SOC team's emphasis on confidentiality and integrity suggests a low risk appetite, indicating they prioritize security over potential financial loss, which is reflected in option B. Additionally, the impact of a ransomware incident can be significant, affecting critical systems and data integrity, making option D relevant as well, while the other options do not directly relate to their immediate motivation.