Certified in Risk and Information Systems Control (CRISC) — Question 1043
You are the project manager of your enterprise. You have introduced an intrusion detection system for the control. You have identified a warning of violation of security policies of your enterprise. What type of control is an intrusion detection system (IDS)?
Answer options
- A. Detective
- B. Corrective
- C. Preventative
- D. Recovery
Correct answer: A
Explanation
The correct answer is A, as an intrusion detection system (IDS) is designed to detect and alert on potential security breaches, which aligns with detective controls. Options B, C, and D do not apply: corrective controls address issues after a breach, preventative controls aim to stop breaches before they occur, and recovery controls focus on restoring systems after an incident.