Certified Information Security Manager (CISM) — Question 175

The BEST indication of a change in risk that may negatively impact an organization is an increase in the number of:

Answer options

• A. security incidents reported by staff to the information security team.
• B. malware infections detected by the organization's anti-virus software.
• C. alerts triggered by the security information and event management (SIEM) solution.
• D. events logged by the intrusion detection system (IDS).

Correct answer: A

Explanation

An increase in security incidents reported by staff directly indicates a growing awareness and recognition of threats within the organization, which signifies a shift in risk. While malware infections (B), SIEM alerts (C), and IDS events (D) are relevant, they do not capture the human element of risk perception as effectively as staff-reported incidents do.