ISACA Certified AI Security Manager — Question 9

How can an organization BEST protect itself from payment diversions caused by deepfake attacks impersonating management?

Answer options

• A. Require mandatory deepfake detection training for all employees.
• B. Implement resilient payment approval processes.
• C. Mandate that payments be sent only once per week.
• D. Issue a security policy on deepfakes.

Correct answer: B

Explanation

The correct answer, B, focuses on implementing resilient payment approval processes that can help verify the legitimacy of payment requests, reducing the risk of falling victim to deepfake attacks. Options A and D, while helpful, do not directly impact the payment process itself. Option C is too limiting and could disrupt normal business operations without effectively addressing the deepfake issue.