Certified Information Security Manager (CISM) — Question 789

Which of the following activities is designed to handle a control failure that leads to a breach?

Answer options

• A. Vulnerability management
• B. Incident management
• C. Root cause analysis
• D. Risk assessment

Correct answer: B

Explanation

Incident management is the correct answer because it focuses on responding to and managing incidents, including breaches caused by control failures. The other options, such as vulnerability management, root cause analysis, and risk assessment, are preventative or analytical processes that do not directly address the immediate response to a security breach.