Certified Information Security Manager (CISM) — Question 297

A modification to a critical system was not detected until the system was compromised. Which of the following will BEST help to prevent future occurrences?

Answer options

• A. Conducting continuous network monitoring
• B. Improving the change control process
• C. Conducting continuous risk assessments
• D. Baselining server configurations

Correct answer: B

Explanation

The best way to prevent future issues is by improving the change control process, as this ensures that all modifications are properly documented and reviewed before implementation. Continuous network monitoring, risk assessments, and server baselining are important but do not address the root cause of unapproved changes that led to the compromise.