CISA Certified Information Systems Auditor – Question0342

Which of the following should an IS auditor review FIRST when evaluating incident management procedures?

A.
Command center monitoring
B. Root cause analysis steps
C. Prioritization criteria
D. Peer review requirements

Correct Answer: C