Certified Information Systems Auditor (CISA) — Question 173

A help desk has been contacted regarding a lost business mobile device. The FIRST course of action should be to:

Answer options

• A. consult the legal team regarding the impact of intellectual property loss.
• B. verify the user's identity through a challenge response system.
• C. involve the security response team to launch an investigation.
• D. attempt to locate the device remotely.

Correct answer: B

Explanation

The correct first step is to verify the user's identity through a challenge response system to ensure that the request is legitimate. This is crucial before taking any further actions, such as locating the device or involving other teams. The other options, while important, should not be the initial action as they do not confirm the user's identity first.