CISA Certified Information Systems Auditor – Question0446

A critical server for a hospital has been encrypted by ransomware. The hospital is unable to function effectively without this server. Which of the following would MOST effectively allow the hospital to avoid paying the ransom?

A.
A continual server replication process
B. A property tested offline backup system
C. A property configured firewall
D. Employee training on ransomware

Correct Answer: A