Certified Information Systems Security Professional (CISSP) — Question 20
While dealing with the consequences of a security incident, which of the following security controls are MOST appropriate?
Answer options
- A. Detective and recovery controls
- B. Corrective and recovery controls
- C. Preventative and corrective controls
- D. Recovery and proactive controls
Correct answer: B
Explanation
Corrective and recovery controls are essential as they help to fix the issues caused by the incident and restore systems to normal operation. Detective controls are less relevant in this context since the incident has already occurred, and preventative controls aim to stop incidents before they happen, which is not the focus during the incident aftermath.