PECB Lead Implementer (ISO/IEC 27001) — Question 47

According to scenario 7, a demilitarized zone (DMZ) is deployed within InfoSec’s network. What type of control has InfoSec implemented in this case?

Answer options

• A. Detective
• B. Preventive
• C. Corrective

Correct answer: B

Explanation

The correct answer is B, Preventive, because a DMZ is designed to create a buffer zone that prevents unauthorized access to the internal network. Detective controls, like monitoring, are used to identify potential security breaches, while corrective controls respond to incidents after they occur, neither of which apply to the establishment of a DMZ.