Certified in Risk and Information Systems Control (CRISC) — Question 738

Which of the following issues regarding an organization's IT incident response plan would be the GREATEST concern?

Answer options

• A. The incident response capability is outsourced.
• B. Teams are not operational until an incident occurs.
• C. Not all employees have attended incident response training.
• D. Roles and responsibilities are not clearly defined.

Correct answer: D

Explanation

The correct answer is D, as unclear roles and responsibilities can lead to confusion and delays during an incident, worsening the situation. While outsourcing (A), delayed operational readiness (B), and incomplete training (C) are concerns, they can be managed more effectively if roles are well-defined.