PECB Lead Implementer (ISO/IEC 27001) — Question 54

Which situation described in scenario 15 indicates that Texas H&H Inc. implemented a detective control?

Answer options

• A. Texas H&H Inc integrated the incident management policy in its information security policy
• B. Texas H&H Inc. tested its system for malicious activity and checked cloud-based email settings
• C. Texas H&H Inc. hired an expert to conduct a forensic analysis

Correct answer: B

Explanation

The correct answer, B, indicates that Texas H&H Inc. actively monitored its system for threats, which is a clear example of a detective control. Options A and C involve policy integration and forensic analysis, respectively, which do not directly relate to the detection of incidents in real-time.