CompTIA CySA+ CS0-003 Practice Question
Following a significant data breach, the cybersecurity team conducts a 'lessons learned' session. Which of the following activities is the primary goal of this session?
Evaluate and update the Incident Response Plan (IRP) based on findings.
Punish team members for errors made during the incident.
Determine the exact financial loss incurred due to the incident.
Report the incident to upper management and stakeholders.