CISA Certified Information Systems Auditor – Question0812

During which phase of an incident response process should corrective actions to the response procedure be considered and implemented?

A.
Eradication
B. Identification
C. Review
D. Containment

Correct Answer: A