Certified Information Security Manager (CISM) — Question 318

Which of the following will have the MOST negative impact to the effectiveness of incident response processes?

Answer options

• A. High organizational risk tolerance
• B. Decentralized incident monitoring
• C. Ambiguous severity criteria
• D. Manual incident reporting processes

Correct answer: C

Explanation

Ambiguous severity criteria can lead to confusion regarding the prioritization and handling of incidents, which directly hampers the incident response process. While high organizational risk tolerance, decentralized monitoring, and manual reporting can pose challenges, they do not inherently create the same level of uncertainty in incident classification and response as ambiguous severity criteria do.