CISM Certified Information Security Manager – Question0922

A validated patch to address a new vulnerability that may affect a mission-critical server has been released. What should be done immediately?

A.
Add mitigating controls.
B. Take the server off-line and install the patch.
C. Check the server’s security and install the patch.
D. Conduct an impact analysis.

Correct Answer: D