Certified Chief Information Security Officer (CCISO) — Question 175
A system is designed to dynamically block offending Internet IP-addresses from requesting services from a secure website.
This type of control is considered______________________.
Answer options
- A. Preventive detection control
- B. Corrective security control
- C. Zero-day attack mitigation
- D. Dynamic blocking control
Correct answer: B
Explanation
The correct answer, B, indicates a method aimed at correcting or mitigating issues as they occur, thus providing a response to threats. Option A refers to controls that detect threats before they occur, while C deals with specific types of vulnerabilities that exploit unpatched software. Option D is a descriptive term but does not align with the classification of security controls.