Certified Information Security Manager (CISM) — Question 865

Which of the following is an example of a deterrent control?

Answer options

• A. Segregation of responsibilities
• B. A warning banner
• C. An intrusion detection system (IDS)
• D. Periodic data restoration

Correct answer: B

Explanation

A warning banner serves as a deterrent control by informing users that their actions are being monitored and that there may be consequences for unauthorized activities. Segregation of responsibilities, an IDS, and periodic data restoration are important security measures, but they do not primarily function to deter behavior.