Certified Information Security Manager (CISM) — Question 548

When establishing classifications of security incidents for the development of an incident response plan, which of the following provides the MOST valuable input?

Answer options

• A. Business impact analysis (BIA) results
• B. Recommendations from senior management
• C. The business continuity plan (BCP)
• D. Vulnerability assessment results

Correct answer: A

Explanation

The Business Impact Analysis (BIA) results provide essential information regarding the potential effects of security incidents on business operations, making it the most valuable input for incident classification. While recommendations from senior management, the business continuity plan, and vulnerability assessment results are important, they do not specifically address the impact of incidents on the business itself as effectively as a BIA does.