Certified Information Security Manager (CISM) — Question 1143

Which of the following is the MOST important reason for an organization to communicate to affected parties that a security incident has occurred?

Answer options

• A. To improve awareness of information security
• B. To disclose the root cause of the incident
• C. To comply with regulations regarding notification
• D. To increase goodwill toward the organization

Correct answer: C

Explanation

The correct answer is C because legal regulations often mandate that organizations notify affected parties of security incidents to ensure transparency and compliance. While improving awareness, disclosing root causes, and increasing goodwill are important, they do not carry the same legal obligation as compliance with notification regulations.