Certified Information Security Manager (CISM) — Question 296

Which of the following is MOST effective in reducing the financial impact following a security breach leading to data disclosure?

Answer options

• A. Backup and recovery strategy
• B. A business continuity plan (BCP)
• C. A data loss prevention (DLP) solution
• D. An incident response plan

Correct answer: D

Explanation

An incident response plan is crucial for effectively managing the aftermath of a security breach, as it provides a structured approach to contain the breach and mitigate damages. While a backup and recovery strategy, business continuity plan, and data loss prevention solution are important components of overall security, they do not specifically address the immediate response required after a breach occurs.