Certified Information Security Manager (CISM) — Question 3

Which of the following BEST prepares a computer incident response team for a variety of information security scenarios?

Answer options

• A. Tabletop exercises
• B. Forensics certification
• C. Penetration tests
• D. Disaster recovery drills

Correct answer: A

Explanation

Tabletop exercises simulate realistic scenarios that allow a computer incident response team to practice their response strategies in a controlled environment. In contrast, forensics certification focuses on investigative skills, penetration tests evaluate security vulnerabilities, and disaster recovery drills are specific to recovery processes, which do not comprehensively prepare the team for varied incidents.