🔥 3-day streak
ISACA CISM — Certified Information Security Manager59 / 121
Question 59 of 121

An information security manager established a key risk indicator (KRI) that tracks the percentage of privileged accounts without multifactor authentication. The KRI was set with a threshold of 5%. Over the last three monthly reporting cycles the value has climbed from 4% to 6% to 9%, breaching the threshold. What is the security manager's BEST first action?

Reviewed for accuracy · Report an issueNext question