CISSP · Question #646
Following a penetration test, what should an organization do FIRST?
The correct answer is D. Evaluate the problems identified in the test result.. After a penetration test, the first thing an organization should do is evaluate the problems identified in the test result. This evaluation helps prioritize the vulnerabilities and weaknesses uncovered during the test based on their severity and potential impact on the organizati
Question
Following a penetration test, what should an organization do FIRST?
Options
- AReview all security policies and procedures.
- BEnsure staff is trained in security.
- CDetermine if you need to conduct a full security assessment.
- DEvaluate the problems identified in the test result.
How the community answered
(32 responses)- A3% (1)
- B6% (2)
- C13% (4)
- D78% (25)
Explanation
After a penetration test, the first thing an organization should do is evaluate the problems identified in the test result. This evaluation helps prioritize the vulnerabilities and weaknesses uncovered during the test based on their severity and potential impact on the organization. By analyzing the results, the organization can take informed steps to address the most critical issues first, and plan remediation actions effectively.
Topics
Community Discussion
No community discussion yet for this question.