Certified Information Systems Auditor (CISA) — Question 1050

Which of the following findings would be of GREATEST concern when evaluating an organization's endpoint computer patch management process?

Answer options

• A. Patching is performed every three months.
• B. Patch implementation took longer than expected.
• C. Rollbacks were required for some patches.
• D. Patching is performed manually for some systems.

Correct answer: C

Explanation

Option C is the most concerning because requiring rollbacks indicates that patches may have caused significant issues, potentially compromising system stability or security. While the other options point to inefficiencies or delays in the patching process, they do not indicate a direct risk to the system's integrity as rollbacks do.