CompTIA Security+ SY0-701 Practice Question
During a security incident, it is discovered that sensitive customer information has been exposed. Which of the following measures would BEST enable the incident response team to ascertain the extent of potential harm to the business?
Identifying the amount of time needed to resume normal operations for online services
Calculating the duration of system unavailability following the security incident
Evaluating the volume of sensitive information that was inaccessible due to encryption
Estimating the expected financial loss over a year from the unauthorized data exposure