Certified Information Security Manager (CISM) — Question 816

Which type of plan is PRIMARILY intended to reduce the potential impact of security events that may occur?

Answer options

• A. Incident response plan
• B. Business continuity plan (BCP)
• C. Security awareness plan
• D. Disaster recovery plan (DRP)

Correct answer: A

Explanation

The correct answer is A, as an Incident response plan specifically outlines the procedures to follow when a security event occurs to mitigate its impact. The other options, such as the Business continuity plan (BCP) and Disaster recovery plan (DRP), focus on broader recovery efforts after incidents rather than immediate response to security events.