🔥 3-day streak
ISACA CISM — Certified Information Security Manager26 / 121
Question 26 of 121

Employees across several business units have rapidly begun using a third-party generative AI service to accelerate their work. The information security manager becomes aware of this trend but has no formal record of the tool in the risk register or any assessment of its data handling. Which action should the information security manager take FIRST to address this emerging risk?

Reviewed for accuracy · Report an issueNext question