An organization developed a comprehensive incident response policy. Executive management approved the policy and its associated procedures.
Which of the following activities would be MOST beneficial to evaluate personnel’s familiarity with incident response procedures?
A . A simulated breach scenario involving the incident response team
B . Completion of annual information security awareness training by all employees
C . Tabletop activities involving business continuity team members
D . Completion of lessons-learned documentation by the computer security incident response team
E . External and internal penetration testing by a third party
Answer: A