Certified in Risk and Information Systems Control (CRISC) — Question 618
An organization has experienced a cyber attack that exposed customer personally identifiable information (PII) and caused extended outages of network services. Which of the following stakeholders are MOST important to include in the cyber response team to determine response actions?
Answer options
- A. Cyber risk remediation plan owners
- B. Enterprise risk management (ERM) team
- C. Security control owners based on control failures
- D. Risk owners based on risk impact
Correct answer: A
Explanation
Including Cyber risk remediation plan owners is crucial as they are directly responsible for managing the response to cyber threats and can implement necessary remediation strategies. While the ERM team, security control owners, and risk owners play important roles, they may not have the immediate authority or focus on the cyber-specific issues that need urgent attention following such an attack.