Certified Information Security Manager (CISM) — Question 324

Which of the following should be the FIRST step in patch management procedures when receiving an emergency security patch?

Answer options

• A. Validate the authenticity of the patch.
• B. Conduct comprehensive testing of the patch.
• C. Schedule patching based on the criticality.
• D. Install the patch immediately to eliminate the vulnerability.

Correct answer: A

Explanation

The correct answer is A because validating the authenticity of the patch is crucial to ensure that it is legitimate and not malicious. Options B, C, and D are important steps but should come after confirming that the patch is valid to avoid unnecessary risks from unverified updates.