CISM Certified Information Security Manager – Question1431

The PRIMARY goal of a post-incident review should be to:

A.
determine why the incident occurred.
B. determine how to improve the incident handling process.
C. identify policy changes to prevent a recurrence.
D. establish the cost of the incident to the business.

Correct Answer: C