A security incident exposing previously unknown risk should trigger a review of the Cybersecurity Management System (CSMS). This is because such incidents highlight vulnerabilities or gaps in the existing security measures, necessitating a reassessment to address and mitigate these newfound risks and to bolster the overall security posture.