CISSP · Question #468
Which of the following controls is the most for a system identified as critical in terms of data and function to the organization?
The correct answer is A. Preventive controls. Preventive controls are the most suitable for a system identified as critical in terms of data and function to the organization, because they aim to prevent or deter threats from compromising the system's confidentiality, integrity, and availability. Examples of preventive contro
Question
Which of the following controls is the most for a system identified as critical in terms of data and function to the organization?
Options
- APreventive controls
- BMonitoring control
- CCost controls
- DCompensating controls
How the community answered
(67 responses)- A90% (60)
- B1% (1)
- C6% (4)
- D3% (2)
Explanation
Preventive controls are the most suitable for a system identified as critical in terms of data and function to the organization, because they aim to prevent or deter threats from compromising the system's confidentiality, integrity, and availability. Examples of preventive controls include encryption, authentication, access control, firewalls, antivirus software, and backup systems. Monitoring, cost, and compensating controls are not as effective as preventive controls for protecting critical systems, because they either detect, measure, or mitigate the impact of threats after they have occurred, rather than preventing them in the first place.
Topics
Community Discussion
No community discussion yet for this question.