Certified Information Security Manager (CISM) — Question 442

Which of the following presents the GREATEST challenge to a security operations center's timely identification of potential security breaches?

Answer options

• A. An organization has a decentralized data center that uses cloud services.
• B. Operating systems are no longer supported by the vendor.
• C. IT system clocks are not synchronized with the centralized logging server.
• D. The patch management system does not deploy patches in a timely manner.

Correct answer: C

Explanation

The correct answer, C, indicates that unsynchronized IT system clocks can lead to discrepancies in log data, making it hard to detect incidents in real-time. Options A and B relate to infrastructure challenges but do not directly impact the timeliness of breach detection. Option D, while also significant, primarily affects the prevention of breaches rather than the identification process.