Which of the following is an activity that should trigger a review of the CSMS?
Which of the following is an activity that should trigger a review of the CSMS?
A security incident exposing previously unknown risk should trigger a review of the Cybersecurity Management System (CSMS). This is because such incidents highlight vulnerabilities or gaps in the existing security measures, necessitating a reassessment to address and mitigate these newfound risks and to bolster the overall security posture.
An unscheduled activity such as a security incident exposing unknown risk may trigger a review of the CSMS. IC32M page 501