An organization discovers that unauthorized outsiders accessed cloud-based files containing sensitive user data. Which action meets mandatory guidelines for handling this situation?
Disable affected user accounts and implement credential updates as part of incident response
Coordinate with external authorities as part of the process to gather incident records or logs
Review stored archives for potentially exposed information to decide on next compliance steps
Collaborate with legal counsel to determine next required compliance and preservation steps
Collaborating with legal counsel addresses notifications and data retention requirements. Disabling accounts and switching credentials handles immediate technical risks but does not confirm compliance with reporting regulations. Coordinating with external authorities can be a key step; however, determining if and when this is required benefits from legal guidance first. Reviewing stored archives identifies the scope of exposed data but does not fulfill legal mandates for notification and documentation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why is it important to collaborate with legal counsel after detecting unauthorized access?
Open an interactive chat with Bash
What types of compliance requirements might legal counsel address after a data breach?
Open an interactive chat with Bash
When should external authorities be involved after a data breach?