Certified Information Security Manager (CISM) — Question 266

Which is the MOST important requirement when establishing a process for responding to zero-day vulnerabilities?

Answer options

• A. The IT team updates antivirus signatures on user systems.
• B. The IT team implements an emergency patch deployment process.
• C. Business users stop using the impacted application until a patch is released.
• D. The information security team implements recommended workarounds.

Correct answer: D

Explanation

The correct answer is D because implementing recommended workarounds can help mitigate the risk of exploitation until a proper patch is available. Options A and B focus on post-vulnerability responses rather than immediate protective measures, while option C may not be feasible for business continuity.