Certified Information Security Manager (CISM) — Question 187

When evaluating the risk from external hackers the maximum exposure time would be the difference between:

Answer options

• A. log refresh and restoration.
• B. identification and resolution.
• C. detection and response.
• D. compromise and containment.

Correct answer: D

Explanation

The correct answer is D, as the maximum exposure time is calculated from the moment of compromise until containment occurs. Options A, B, and C do not accurately represent the full duration of potential risk exposure from external threats, as they focus on different stages of incident handling.