CISA Certified Information Systems Auditor – Question2618

Which of the following is the MAIN purpose of implementing an incident response process?

A.
Provide substantial audit-trail evidence.
B. Assign roles and responsibilities.
C. Comply with policies and procedures.
D. Manage impact due to breaches.

Correct Answer: D