CompTIA CySA+ (CS0-003) — Question 65

To minimize the impact of a security incident, a cybersecurity analyst has configured audit settings in the organization’s cloud services. Which of the following security controls has the analyst configured?

Answer options

• A. Preventive
• B. Corrective
• C. Directive
• D. Detective

Correct answer: D

Explanation

The correct answer is D, as detective controls are designed to identify and monitor security incidents after they occur. Preventive controls aim to stop incidents from happening, corrective controls focus on responding to incidents, and directive controls provide guidance on acceptable behavior, making them less relevant in this scenario.