CISM Certified Information Security Manager – Question1311

Which of the following is the PRIMARY purpose of red team testing?

A.
To determine the organization’s preparedness for an attack
B. To assess the vulnerability of employees to social engineering
C. To establish a baseline incident response program
D. To confirm the risk profile of the organization

Correct Answer: A