nerdexam
(ISC)2

CISSP · Question #468

Which of the following controls is the most for a system identified as critical in terms of data and function to the organization?

The correct answer is A. Preventive controls. Preventive controls are the most suitable for a system identified as critical in terms of data and function to the organization, because they aim to prevent or deter threats from compromising the system's confidentiality, integrity, and availability. Examples of preventive contro

Submitted by joshua94· Mar 5, 2026Security Architecture and Engineering

Question

Which of the following controls is the most for a system identified as critical in terms of data and function to the organization?

Options

  • APreventive controls
  • BMonitoring control
  • CCost controls
  • DCompensating controls

How the community answered

(67 responses)
  • A
    90% (60)
  • B
    1% (1)
  • C
    6% (4)
  • D
    3% (2)

Explanation

Preventive controls are the most suitable for a system identified as critical in terms of data and function to the organization, because they aim to prevent or deter threats from compromising the system's confidentiality, integrity, and availability. Examples of preventive controls include encryption, authentication, access control, firewalls, antivirus software, and backup systems. Monitoring, cost, and compensating controls are not as effective as preventive controls for protecting critical systems, because they either detect, measure, or mitigate the impact of threats after they have occurred, rather than preventing them in the first place.

Topics

#security controls#preventive controls#critical systems#risk mitigation

Community Discussion

No community discussion yet for this question.

Full CISSP Practice