Certified Information Systems Auditor (CISA) — Question 731

Which of the following controls provides the MOST protection against ransomware attacks?

Answer options

• A. Education and awareness training
• B. Tested and reliable backups
• C. A tested incident response plan
• D. Signature based anti-malware tools

Correct answer: B

Explanation

The correct answer is B, as having tested and reliable backups ensures that data can be restored without paying a ransom. While education and awareness training (A) and an incident response plan (C) are important for prevention and reaction, they do not directly recover compromised data. Signature-based anti-malware tools (D) may help prevent some attacks but do not guarantee complete protection against ransomware.