Certified Information Systems Auditor (CISA) — Question 290

A confidential file was sent to a legal entity, and hashing was used on the file. Which type of control has been applied?

Answer options

• A. Detective
• B. Compensating
• C. Corrective
• D. Preventive

Correct answer: A

Explanation

Hashing a file is a method used to verify its integrity, which allows for the detection of unauthorized changes. This aligns with detective controls that aim to identify security breaches or issues after they occur. The other options, such as compensating, corrective, and preventive controls, serve different purposes and do not specifically focus on the detection of alterations.