Certified in Risk and Information Systems Control (CRISC) — Question 1228

An organization expects to continually deal with severe distributed denial of service (DDoS) attacks from hacktivist groups. Which of the following is the BEST recommendation to help address this threat?

Answer options

• A. Implement Internet service provider (ISP) redundancy.
• B. Implement an intrusion prevention system (IPS).
• C. Develop an incident response plan.
• D. Plan data center redundancy.

Correct answer: A

Explanation

Implementing Internet service provider (ISP) redundancy is the best recommendation because it ensures that if one ISP is targeted or goes down due to a DDoS attack, the organization can still maintain connectivity through another ISP. The other options, while useful in their own right, do not directly address the issue of maintaining internet access during a DDoS attack.