After identifying a security breach that resulted in the loss of customer data but was contained before widespread system damage, which of the following is the most appropriate initial communication step?
Consult the incident response plan for specific communication protocols.
Reach out to upper management before taking any actions.
Immediately notify public relations to prepare a press release.
Directly contact law enforcement to handle the public notification.
Consulting the incident response plan is the correct course of action because it outlines the communication protocols, including who should be notified, when, and how. Public relations should be informed as per the incident response plan, but it is not the initial step without consulting the plan. Law enforcement is not typically the first contact in a data breach scenario unless specified by the incident response plan. Notifying upper management is part of the communication protocol, but again, the incident response plan dictates the order and method of notification.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is an incident response plan?
Open an interactive chat with Bash
Why is consulting the incident response plan the initial step?
Open an interactive chat with Bash
What role does public relations play in a data breach scenario?