🔥 3-day streak
ISACA CISM — Certified Information Security Manager44 / 121
Question 44 of 121

A security analyst monitoring the SIEM detects confirmed malware spreading laterally across multiple servers in a production environment. The incident response plan is activated. As the analyst begins isolating affected hosts, a business unit manager calls demanding immediate details and a public statement. According to good incident management practice, what should the analyst do FIRST regarding this request?

Reviewed for accuracy · Report an issueNext question