Systems Security Certified Practitioner – SSCP – Question0573

Which of the following is NOT a task normally performed by a Computer Incident Response Team (CIRT)?

A.
Develop an information security policy.
B. Coordinate the distribution of information pertaining to the incident to the appropriate parties.
C. Mitigate risk to the enterprise.
D. Assemble teams to investigate the potential vulnerabilities.

Correct Answer: A

Explanation:

Writing a corporate security policy is normally a task of upper management in an organization. Other tasks would usually be performed by a Computer Incident Response Team. Source: KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the Ten Domains of Computer Security, John Wiley & Sons, 2001, Chapter 3: Telecommunications and Network Security (page 64).