Final answer:
Incident-response plans indeed should include centralized reporting of all security incidents, as it brings consistency and effectiveness to the incident management process.
Step-by-step explanation:
The statement that incident-response plans should provide centralized reporting of all security incidents is TRUE. Centralized reporting is critical for effective incident management, allowing an organization to track, manage, and analyze incidents comprehensively. The centralized approach ensures that all security incidents are reported in a consistent manner, facilitating quicker response and remediation. This also aids in identifying trends and preventing future security breaches by learning from past incidents.
As highlighted by the case study involving the Brazilian banking institution, when operators and security personnel experience increased cognitive demand, the likelihood of mistakes in detecting real security breaches versus false alarms can change. This finding underscores the importance of centralized reporting and highlights the fact that swift and accurate responses to security alerts are crucial to manage risks more effectively. In the context of the Target data breach, it was seen that failure to interpret security breach signals correctly led to significant damage.