CompTIA Security+ (SY0-701) — Question 283

Which of the following is considered a preventive control?

Answer options

• A. Configuration auditing
• B. Log correlation
• C. Incident alerts
• D. Segregation of duties

Correct answer: D

Explanation

The correct answer is D, Segregation of duties, as it prevents fraud and errors by ensuring that no single individual has control over all aspects of a transaction. Options A, B, and C are all examples of detective or corrective controls which do not prevent issues from occurring but rather detect or respond to them after the fact.