CompTIA CySA+ CS0-003 Practice Question
After detecting an unauthorized access incident, a Cybersecurity Analyst is preparing a report for the Incident Response Team. The Analyst needs to ensure the reporting is in line with legal requirements. Which of the following items should the Analyst prioritize to include in the report to ensure it meets legal obligations?
A graph of affected systems
Recommendations for policy improvement post-incident
Detailed documentation of the evidence
A list of system patches applied prior to the incident