An organization's incident response plan assigns the CIO as the sole decision-maker during security incidents. The CIO is frequently traveling internationally across multiple time zones. What is the PRIMARY weakness?

Home › MCQs › CISA › Question #6832

CISA QUESTION #6832

Question 1

Single point of failure in incident response leadership✔️
Need for deputy or alternate decision-makers to ensure timely incident response
Excessive authority concentration
Insufficient escalation procedures

Correct Answer Explanation

Having a single decision-maker who is frequently unavailable creates a critical single point of failure. Security incidents require rapid response—delays waiting for one person can allow incidents to escalate. The organization needs designated alternates with equivalent authority to ensure continuous incident response capability.

More Options