Certified Information Security Manager (CISM) — Question 446

Which of the following is an information security manager's BEST recommendation to senior management following a breach at the organization's Software as a
Service (SaaS) vendor?

Answer options

• A. Engage legal counsel
• B. Terminate the relationship with the vendor
• C. Renegotiate the vendor contract
• D. Update the vendor risk assessment

Correct answer: A

Explanation

Engaging legal counsel is crucial after a breach as they can provide guidance on legal implications and compliance issues that arise from the incident. Simply terminating the vendor relationship may not address the underlying issues, while renegotiating the contract and updating the risk assessment are important but secondary steps that follow legal consultation.