CISM Certified Information Security Manager – Question1211

A security team is conducting its annual disaster recovery test. Post-restoration testing shows the system response time is significantly slower due to insufficient bandwidth for Internet connectivity at the recovery center. Which of the following is the security manager's BEST course of action?

A.
Halt the test until the network bandwidth is increased.
B. Reduce the number of applications marked as critical.
C. Document the deficiency for review by business leadership.
D. Pursue risk acceptance for the slower response time.

Correct Answer: A