Certified Information Security Manager (CISM) — Question 609

What is the PRIMARY goal of an incident management program?

Answer options

• A. Contain the incident
• B. Communicate to external entities
• C. Minimize impact to the organization
• D. Identify root cause

Correct answer: C

Explanation

The primary goal of an incident management program is to minimize impact to the organization, ensuring that disruptions are handled efficiently. While containing the incident and communicating with external entities are important, they serve the broader purpose of reducing the overall impact. Identifying the root cause is essential for long-term improvement but is not the immediate priority during the incident response.