Exam CIPM All QuestionsBrowse all questions from this exam
Go to Exam
Question 71

SCENARIO -

Please use the following to answer the next question:

Ben works in the IT department of IgNight, Inc., a company that designs lighting solutions for its clients. Although IgNight's customer base consists primarily of offices in the US, some individuals have been so impressed by the unique aesthetic and energy-saving design of the light fixtures that they have requested IgNight's installations in their homes across the globe.

One Sunday morning, while using his work laptop to purchase tickets for an upcoming music festival, Ben happens to notice some unusual user activity on company files. From a cursory review, all the data still appears to be where it is meant to be but he can't shake off the feeling that something is not right. He knows that it is a possibility that this could be a colleague performing unscheduled maintenance, but he recalls an email from his company's security team reminding employees to be on alert for attacks from a known group of malicious actors specifically targeting the industry.

Ben is a diligent employee and wants to make sure that he protects the company but he does not want to bother his hard-working colleagues on the weekend. He is going to discuss the matter with this manager first thing in the morning but wants to be prepared so he can demonstrate his knowledge in this area and plead his case for a promotion.

Going forward, what is the best way for IgNight to prepare its IT team to manage these kind of security events?

    Correct Answer: C

    The best way for IgNight to prepare its IT team to manage security events is through IT security awareness training. This training helps employees understand potential security risks, recognize suspicious activities, and take appropriate actions to safeguard the company's data and systems. While tabletop exercises can be useful for simulating responses to security incidents, foundational awareness training ensures that all employees are equipped with the knowledge to prevent and respond to threats in the first place.

Discussion
CockOption: C

Security awareness training helps employees understand security risks, recognize suspicious activities, and take appropriate actions to protect the company's data and systems.

thecheaterzOption: A

Tabletop

DPRamoneOption: A

Tabletop exercise. Since he is obviously already aware that somethng is looking suspicious, the next step is a tabletop exercise to find out how to act on it.

katizetiOption: A

A. Tabletop exercises.

ET1857Option: A

Answer is A Look for the phrse -IT team to manage these kind of security events Its role based training and the closest option is tabletop excercise

ET1857Option: A

Answer is A Look for the phrse -IT team to manage these kind of security events Its role based training and the closest option is tabletop excercise