Certified in Risk and Information Systems Control (CRISC) — Question 874

Which of the following is a corrective control?

Answer options

• A. Requiring management approval
• B. Isolating an infected host from the network
• C. Encrypting data within a system
• D. Logging activity on a system

Correct answer: B

Explanation

The correct answer is B because isolating an infected host from the network is a corrective action that addresses a specific problem. Options A, C, and D represent administrative, preventive, and monitoring controls respectively, and do not directly correct an issue.