An organization recently experienced a ransomware attack. The security team leader is concerned about the attack reoccurring. However, no further security measu...

An organization recently experienced a ransomware attack. The security team leader is concerned about the attack reoccurring. However, no further security measures have been implemented.
Which of the following processes can be used to identify potential prevention recommendations?