Certified Chief Information Security Officer (CCISO) — Question 114

Which of the following is a critical operational component of an Incident Response Program (IRP)?

Answer options

• A. Monthly program tests to ensure resource allocation is sufficient for supporting the needs of the organization.
• B. Weekly program budget reviews to ensure the percentage of program funding remains constant.
• C. Annual review of program charters, policies, procedures and organizational agreements.
• D. Daily monitoring of vulnerability advisories relating to your organization's deployed technologies.

Correct answer: D

Explanation

The correct answer is D because daily monitoring of vulnerability advisories is crucial for identifying and mitigating threats in real-time, ensuring the organization's security posture is maintained. Options A, B, and C, while important, focus on resource allocation, funding stability, and procedural reviews rather than immediate threat detection and response.