CISA Certified Information Systems Auditor – Question2375

Which of the following would MOST likely require a business continuity plan to be invoked?

A.
A distributed denial of service attack on an email server
B. An unauthorized visitor discovered in the data center
C. An epidemic preventing staff from performing job functions
D. A hacker holding personally identifiable information hostage.

Correct Answer: C